CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
EPSS
Percentile
91.7%
CentOS Errata and Security Advisory CESA-2011:0306
Samba is a suite of programs used by machines to share files, printers, and
other information.
A flaw was found in the way Samba handled file descriptors. If an attacker
were able to open a large number of file descriptors on the Samba server,
they could flip certain stack bits to “1” values, resulting in the Samba
server (smbd) crashing. (CVE-2011-0719)
Red Hat would like to thank the Samba team for reporting this issue.
Users of Samba are advised to upgrade to these updated packages, which
contain a backported patch to resolve this issue. After installing this
update, the smb service will be restarted automatically.
Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2011-April/079553.html
https://lists.centos.org/pipermail/centos-announce/2011-April/079554.html
Affected packages:
samba3x
samba3x-client
samba3x-common
samba3x-doc
samba3x-domainjoin-gui
samba3x-swat
samba3x-winbind
samba3x-winbind-devel
Upstream details at:
https://access.redhat.com/errata/RHSA-2011:0306
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
CentOS | 5 | i386 | samba3x | < 3.5.4-0.70.el5_6.1 | samba3x-3.5.4-0.70.el5_6.1.i386.rpm |
CentOS | 5 | i386 | samba3x-client | < 3.5.4-0.70.el5_6.1 | samba3x-client-3.5.4-0.70.el5_6.1.i386.rpm |
CentOS | 5 | i386 | samba3x-common | < 3.5.4-0.70.el5_6.1 | samba3x-common-3.5.4-0.70.el5_6.1.i386.rpm |
CentOS | 5 | i386 | samba3x-doc | < 3.5.4-0.70.el5_6.1 | samba3x-doc-3.5.4-0.70.el5_6.1.i386.rpm |
CentOS | 5 | i386 | samba3x-domainjoin-gui | < 3.5.4-0.70.el5_6.1 | samba3x-domainjoin-gui-3.5.4-0.70.el5_6.1.i386.rpm |
CentOS | 5 | i386 | samba3x-swat | < 3.5.4-0.70.el5_6.1 | samba3x-swat-3.5.4-0.70.el5_6.1.i386.rpm |
CentOS | 5 | i386 | samba3x-winbind | < 3.5.4-0.70.el5_6.1 | samba3x-winbind-3.5.4-0.70.el5_6.1.i386.rpm |
CentOS | 5 | i386 | samba3x-winbind-devel | < 3.5.4-0.70.el5_6.1 | samba3x-winbind-devel-3.5.4-0.70.el5_6.1.i386.rpm |
CentOS | 5 | x86_64 | samba3x | < 3.5.4-0.70.el5_6.1 | samba3x-3.5.4-0.70.el5_6.1.x86_64.rpm |
CentOS | 5 | x86_64 | samba3x-client | < 3.5.4-0.70.el5_6.1 | samba3x-client-3.5.4-0.70.el5_6.1.x86_64.rpm |