[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 951-1] samba security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : samba
Version        : 2:3.6.6-6+deb7u13
CVE ID         : CVE-2017-7494

steelo discovered a remote code execution vulnerability in Samba, a
SMB/CIFS file, print, and login server for Unix. A malicious client with
access to a writable share, can take advantage of this flaw by uploading
a shared library and then cause the server to load and execute it.

For Debian 7 "Wheezy", these problems have been fixed in version
2:3.6.6-6+deb7u13.

We recommend that you upgrade your samba packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
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=7zVh
-----END PGP SIGNATURE-----


Reply to: