Debian Security Advisory DSA-3171-1 [email protected]
http://www.debian.org/security/ Salvatore Bonaccorso
February 23, 2015 http://www.debian.org/security/faq
Package : samba
CVE ID : CVE-2015-0240
Richard van Eeden of Microsoft Vulnerability Research discovered that
Samba, a SMB/CIFS file, print, and login server for Unix, contains a
flaw in the netlogon server code which allows remote code execution with
root privileges from an unauthenticated connection.
For the stable distribution (wheezy), this problem has been fixed in
version 2:3.6.6-6+deb7u5.
We recommend that you upgrade your samba packages.
Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/
Mailing list: [email protected]
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 7 | armel | samba-tools | < 3.6.6-6+deb7u5 | samba-tools_3.6.6-6+deb7u5_armel.deb |
Debian | 7 | sparc | swat | < 3.6.6-6+deb7u5 | swat_3.6.6-6+deb7u5_sparc.deb |
Debian | 7 | i386 | libsmbclient | < 3.6.6-6+deb7u5 | libsmbclient_3.6.6-6+deb7u5_i386.deb |
Debian | 7 | amd64 | libpam-winbind | < 3.6.6-6+deb7u5 | libpam-winbind_3.6.6-6+deb7u5_amd64.deb |
Debian | 7 | mips | libnss-winbind | < 3.6.6-6+deb7u5 | libnss-winbind_3.6.6-6+deb7u5_mips.deb |
Debian | 7 | kfreebsd-i386 | samba-common-bin | < 3.6.6-6+deb7u5 | samba-common-bin_3.6.6-6+deb7u5_kfreebsd-i386.deb |
Debian | 6 | i386 | samba | < 3.5.6~dfsg-3squeeze12 | samba_3.5.6~dfsg-3squeeze12_i386.deb |
Debian | 7 | ia64 | swat | < 3.6.6-6+deb7u5 | swat_3.6.6-6+deb7u5_ia64.deb |
Debian | 6 | amd64 | samba-common-bin | < 3.5.6~dfsg-3squeeze12 | samba-common-bin_3.5.6~dfsg-3squeeze12_amd64.deb |
Debian | 7 | armhf | winbind | < 3.6.6-6+deb7u5 | winbind_3.6.6-6+deb7u5_armhf.deb |