CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
Percentile
98.9%
CentOS Errata and Security Advisory CESA-2010:0697
Samba is a suite of programs used by machines to share files, printers, and
other information.
A missing array boundary checking flaw was found in the way Samba parsed
the binary representation of Windows security identifiers (SIDs). A
malicious client could send a specially-crafted SMB request to the Samba
server, resulting in arbitrary code execution with the privileges of the
Samba server (smbd). (CVE-2010-3069)
For Red Hat Enterprise Linux 4, this update also fixes the following bug:
/var/tmp/rpm-tmp.[xxxxx]: line 7: restorecon: command not found
With this update, the utility is only used when it is already present on
the system, and the package is now always updated as expected. (BZ#629602)
Users of Samba are advised to upgrade to these updated packages, which
correct these issues. After installing this update, the smb service will be
restarted automatically.
Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2010-September/079158.html
https://lists.centos.org/pipermail/centos-announce/2010-September/079159.html
https://lists.centos.org/pipermail/centos-announce/2010-September/079160.html
https://lists.centos.org/pipermail/centos-announce/2010-September/079161.html
https://lists.centos.org/pipermail/centos-announce/2010-September/079168.html
https://lists.centos.org/pipermail/centos-announce/2010-September/079169.html
Affected packages:
libsmbclient
libsmbclient-devel
samba
samba-client
samba-common
samba-swat
Upstream details at:
https://access.redhat.com/errata/RHSA-2010:0697
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
CentOS | 3 | i386 | samba | < 3.0.9-1.3E.18 | samba-3.0.9-1.3E.18.i386.rpm |
CentOS | 3 | i386 | samba-client | < 3.0.9-1.3E.18 | samba-client-3.0.9-1.3E.18.i386.rpm |
CentOS | 3 | i386 | samba-common | < 3.0.9-1.3E.18 | samba-common-3.0.9-1.3E.18.i386.rpm |
CentOS | 3 | i386 | samba-swat | < 3.0.9-1.3E.18 | samba-swat-3.0.9-1.3E.18.i386.rpm |
CentOS | 3 | i386 | samba-client | < 3.0.9-1.3E.18 | samba-client-3.0.9-1.3E.18.i386.rpm |
CentOS | 3 | x86_64 | samba | < 3.0.9-1.3E.18 | samba-3.0.9-1.3E.18.x86_64.rpm |
CentOS | 3 | i386 | samba-common | < 3.0.9-1.3E.18 | samba-common-3.0.9-1.3E.18.i386.rpm |
CentOS | 3 | x86_64 | samba-common | < 3.0.9-1.3E.18 | samba-common-3.0.9-1.3E.18.x86_64.rpm |
CentOS | 3 | x86_64 | samba-swat | < 3.0.9-1.3E.18 | samba-swat-3.0.9-1.3E.18.x86_64.rpm |
CentOS | 4 | i386 | samba | < 3.0.33-0.19.el4_8.3 | samba-3.0.33-0.19.el4_8.3.i386.rpm |