Debians sikkerhedsbulletin
DSA-701-2 samba -- heltalsoverløbs
- Rapporteret den:
- 21. apr 2005
- Berørte pakker:
- samba
- Sårbar:
- Ja
- Referencer i sikkerhedsdatabaser:
- I Debians fejlsporingssystem: Fejl 302378.
I Mitres CVE-ordbog: CVE-2004-1154.
CERTs noter om sårbarheder, bulletiner og hændelser: VU#226184. - Yderligere oplysninger:
-
Man har opdaget at den seneste sikkerhedsopdatering af Samba, en LanManager-lignende fil- og printerserver til GNU/Linux, fik dæmonen til at gå ned ved genindlæsning. Dette er rettet. Til reference er herunder teksten fra den oprindelige bulletin:
Greg MacManus har opdaget et heltalsoverløb i smb-dæmonen i Samba, en LanManager-lignende fil- og printerserver til GNU/Linux og Unix-lignende systemer. Efterspørgsel af et meget stort antal adgangskontrol-descriptorer fra en server, kunne udnytte heltalsoverløb, der kunne medføre et bufferoverløb, der igen kunne gøre det muligt at udføre vilkårlig kode med root-rettigheder. Opstrømsudviklerne har opdaget flere mulige heltalsoverløb, som også rettes med denne opdatering.
I den stabile distribution (woody) er disse problemer rettet i version 2.2.3a-15.
I den ustabile distribution (sid) er disse problemer rettet i version 3.0.10-1.
Vi anbefaler at du opgraderer dine samba-pakker.
- Rettet i:
-
Debian GNU/Linux 3.0 (woody)
- Kildekode:
- http://security.debian.org/pool/updates/main/s/samba/samba_2.2.3a-15.dsc
- http://security.debian.org/pool/updates/main/s/samba/samba_2.2.3a-15.diff.gz
- http://security.debian.org/pool/updates/main/s/samba/samba_2.2.3a.orig.tar.gz
- http://security.debian.org/pool/updates/main/s/samba/samba_2.2.3a-15.diff.gz
- Arkitekturuafhængig komponent:
- http://security.debian.org/pool/updates/main/s/samba/samba-doc_2.2.3a-15_all.deb
- Alpha:
- http://security.debian.org/pool/updates/main/s/samba/libpam-smbpass_2.2.3a-15_alpha.deb
- http://security.debian.org/pool/updates/main/s/samba/libsmbclient_2.2.3a-15_alpha.deb
- http://security.debian.org/pool/updates/main/s/samba/libsmbclient-dev_2.2.3a-15_alpha.deb
- http://security.debian.org/pool/updates/main/s/samba/samba_2.2.3a-15_alpha.deb
- http://security.debian.org/pool/updates/main/s/samba/samba-common_2.2.3a-15_alpha.deb
- http://security.debian.org/pool/updates/main/s/samba/smbclient_2.2.3a-15_alpha.deb
- http://security.debian.org/pool/updates/main/s/samba/smbfs_2.2.3a-15_alpha.deb
- http://security.debian.org/pool/updates/main/s/samba/swat_2.2.3a-15_alpha.deb
- http://security.debian.org/pool/updates/main/s/samba/winbind_2.2.3a-15_alpha.deb
- http://security.debian.org/pool/updates/main/s/samba/libsmbclient_2.2.3a-15_alpha.deb
- ARM:
- http://security.debian.org/pool/updates/main/s/samba/libpam-smbpass_2.2.3a-15_arm.deb
- http://security.debian.org/pool/updates/main/s/samba/libsmbclient_2.2.3a-15_arm.deb
- http://security.debian.org/pool/updates/main/s/samba/libsmbclient-dev_2.2.3a-15_arm.deb
- http://security.debian.org/pool/updates/main/s/samba/samba_2.2.3a-15_arm.deb
- http://security.debian.org/pool/updates/main/s/samba/samba-common_2.2.3a-15_arm.deb
- http://security.debian.org/pool/updates/main/s/samba/smbclient_2.2.3a-15_arm.deb
- http://security.debian.org/pool/updates/main/s/samba/smbfs_2.2.3a-15_arm.deb
- http://security.debian.org/pool/updates/main/s/samba/swat_2.2.3a-15_arm.deb
- http://security.debian.org/pool/updates/main/s/samba/winbind_2.2.3a-15_arm.deb
- http://security.debian.org/pool/updates/main/s/samba/libsmbclient_2.2.3a-15_arm.deb
- Intel IA-32:
- http://security.debian.org/pool/updates/main/s/samba/libpam-smbpass_2.2.3a-15_i386.deb
- http://security.debian.org/pool/updates/main/s/samba/libsmbclient_2.2.3a-15_i386.deb
- http://security.debian.org/pool/updates/main/s/samba/libsmbclient-dev_2.2.3a-15_i386.deb
- http://security.debian.org/pool/updates/main/s/samba/samba_2.2.3a-15_i386.deb
- http://security.debian.org/pool/updates/main/s/samba/samba-common_2.2.3a-15_i386.deb
- http://security.debian.org/pool/updates/main/s/samba/smbclient_2.2.3a-15_i386.deb
- http://security.debian.org/pool/updates/main/s/samba/smbfs_2.2.3a-15_i386.deb
- http://security.debian.org/pool/updates/main/s/samba/swat_2.2.3a-15_i386.deb
- http://security.debian.org/pool/updates/main/s/samba/winbind_2.2.3a-15_i386.deb
- http://security.debian.org/pool/updates/main/s/samba/libsmbclient_2.2.3a-15_i386.deb
- Intel IA-64:
- http://security.debian.org/pool/updates/main/s/samba/libpam-smbpass_2.2.3a-15_ia64.deb
- http://security.debian.org/pool/updates/main/s/samba/libsmbclient_2.2.3a-15_ia64.deb
- http://security.debian.org/pool/updates/main/s/samba/libsmbclient-dev_2.2.3a-15_ia64.deb
- http://security.debian.org/pool/updates/main/s/samba/samba_2.2.3a-15_ia64.deb
- http://security.debian.org/pool/updates/main/s/samba/samba-common_2.2.3a-15_ia64.deb
- http://security.debian.org/pool/updates/main/s/samba/smbclient_2.2.3a-15_ia64.deb
- http://security.debian.org/pool/updates/main/s/samba/smbfs_2.2.3a-15_ia64.deb
- http://security.debian.org/pool/updates/main/s/samba/swat_2.2.3a-15_ia64.deb
- http://security.debian.org/pool/updates/main/s/samba/winbind_2.2.3a-15_ia64.deb
- http://security.debian.org/pool/updates/main/s/samba/libsmbclient_2.2.3a-15_ia64.deb
- HPPA:
- http://security.debian.org/pool/updates/main/s/samba/libpam-smbpass_2.2.3a-15_hppa.deb
- http://security.debian.org/pool/updates/main/s/samba/libsmbclient_2.2.3a-15_hppa.deb
- http://security.debian.org/pool/updates/main/s/samba/libsmbclient-dev_2.2.3a-15_hppa.deb
- http://security.debian.org/pool/updates/main/s/samba/samba_2.2.3a-15_hppa.deb
- http://security.debian.org/pool/updates/main/s/samba/samba-common_2.2.3a-15_hppa.deb
- http://security.debian.org/pool/updates/main/s/samba/smbclient_2.2.3a-15_hppa.deb
- http://security.debian.org/pool/updates/main/s/samba/smbfs_2.2.3a-15_hppa.deb
- http://security.debian.org/pool/updates/main/s/samba/swat_2.2.3a-15_hppa.deb
- http://security.debian.org/pool/updates/main/s/samba/winbind_2.2.3a-15_hppa.deb
- http://security.debian.org/pool/updates/main/s/samba/libsmbclient_2.2.3a-15_hppa.deb
- Motorola 680x0:
- http://security.debian.org/pool/updates/main/s/samba/libpam-smbpass_2.2.3a-15_m68k.deb
- http://security.debian.org/pool/updates/main/s/samba/libsmbclient_2.2.3a-15_m68k.deb
- http://security.debian.org/pool/updates/main/s/samba/libsmbclient-dev_2.2.3a-15_m68k.deb
- http://security.debian.org/pool/updates/main/s/samba/samba_2.2.3a-15_m68k.deb
- http://security.debian.org/pool/updates/main/s/samba/samba-common_2.2.3a-15_m68k.deb
- http://security.debian.org/pool/updates/main/s/samba/smbclient_2.2.3a-15_m68k.deb
- http://security.debian.org/pool/updates/main/s/samba/smbfs_2.2.3a-15_m68k.deb
- http://security.debian.org/pool/updates/main/s/samba/swat_2.2.3a-15_m68k.deb
- http://security.debian.org/pool/updates/main/s/samba/winbind_2.2.3a-15_m68k.deb
- http://security.debian.org/pool/updates/main/s/samba/libsmbclient_2.2.3a-15_m68k.deb
- Big endian MIPS:
- http://security.debian.org/pool/updates/main/s/samba/libpam-smbpass_2.2.3a-15_mips.deb
- http://security.debian.org/pool/updates/main/s/samba/libsmbclient_2.2.3a-15_mips.deb
- http://security.debian.org/pool/updates/main/s/samba/libsmbclient-dev_2.2.3a-15_mips.deb
- http://security.debian.org/pool/updates/main/s/samba/samba_2.2.3a-15_mips.deb
- http://security.debian.org/pool/updates/main/s/samba/samba-common_2.2.3a-15_mips.deb
- http://security.debian.org/pool/updates/main/s/samba/smbclient_2.2.3a-15_mips.deb
- http://security.debian.org/pool/updates/main/s/samba/smbfs_2.2.3a-15_mips.deb
- http://security.debian.org/pool/updates/main/s/samba/swat_2.2.3a-15_mips.deb
- http://security.debian.org/pool/updates/main/s/samba/winbind_2.2.3a-15_mips.deb
- http://security.debian.org/pool/updates/main/s/samba/libsmbclient_2.2.3a-15_mips.deb
- Little endian MIPS:
- http://security.debian.org/pool/updates/main/s/samba/libpam-smbpass_2.2.3a-15_mipsel.deb
- http://security.debian.org/pool/updates/main/s/samba/libsmbclient_2.2.3a-15_mipsel.deb
- http://security.debian.org/pool/updates/main/s/samba/libsmbclient-dev_2.2.3a-15_mipsel.deb
- http://security.debian.org/pool/updates/main/s/samba/samba_2.2.3a-15_mipsel.deb
- http://security.debian.org/pool/updates/main/s/samba/samba-common_2.2.3a-15_mipsel.deb
- http://security.debian.org/pool/updates/main/s/samba/smbclient_2.2.3a-15_mipsel.deb
- http://security.debian.org/pool/updates/main/s/samba/smbfs_2.2.3a-15_mipsel.deb
- http://security.debian.org/pool/updates/main/s/samba/swat_2.2.3a-15_mipsel.deb
- http://security.debian.org/pool/updates/main/s/samba/winbind_2.2.3a-15_mipsel.deb
- http://security.debian.org/pool/updates/main/s/samba/libsmbclient_2.2.3a-15_mipsel.deb
- PowerPC:
- http://security.debian.org/pool/updates/main/s/samba/libpam-smbpass_2.2.3a-15_powerpc.deb
- http://security.debian.org/pool/updates/main/s/samba/libsmbclient_2.2.3a-15_powerpc.deb
- http://security.debian.org/pool/updates/main/s/samba/libsmbclient-dev_2.2.3a-15_powerpc.deb
- http://security.debian.org/pool/updates/main/s/samba/samba_2.2.3a-15_powerpc.deb
- http://security.debian.org/pool/updates/main/s/samba/samba-common_2.2.3a-15_powerpc.deb
- http://security.debian.org/pool/updates/main/s/samba/smbclient_2.2.3a-15_powerpc.deb
- http://security.debian.org/pool/updates/main/s/samba/smbfs_2.2.3a-15_powerpc.deb
- http://security.debian.org/pool/updates/main/s/samba/swat_2.2.3a-15_powerpc.deb
- http://security.debian.org/pool/updates/main/s/samba/winbind_2.2.3a-15_powerpc.deb
- http://security.debian.org/pool/updates/main/s/samba/libsmbclient_2.2.3a-15_powerpc.deb
- IBM S/390:
- http://security.debian.org/pool/updates/main/s/samba/libpam-smbpass_2.2.3a-15_s390.deb
- http://security.debian.org/pool/updates/main/s/samba/libsmbclient_2.2.3a-15_s390.deb
- http://security.debian.org/pool/updates/main/s/samba/libsmbclient-dev_2.2.3a-15_s390.deb
- http://security.debian.org/pool/updates/main/s/samba/samba_2.2.3a-15_s390.deb
- http://security.debian.org/pool/updates/main/s/samba/samba-common_2.2.3a-15_s390.deb
- http://security.debian.org/pool/updates/main/s/samba/smbclient_2.2.3a-15_s390.deb
- http://security.debian.org/pool/updates/main/s/samba/smbfs_2.2.3a-15_s390.deb
- http://security.debian.org/pool/updates/main/s/samba/swat_2.2.3a-15_s390.deb
- http://security.debian.org/pool/updates/main/s/samba/winbind_2.2.3a-15_s390.deb
- http://security.debian.org/pool/updates/main/s/samba/libsmbclient_2.2.3a-15_s390.deb
- Sun Sparc:
- http://security.debian.org/pool/updates/main/s/samba/libpam-smbpass_2.2.3a-15_sparc.deb
- http://security.debian.org/pool/updates/main/s/samba/libsmbclient_2.2.3a-15_sparc.deb
- http://security.debian.org/pool/updates/main/s/samba/libsmbclient-dev_2.2.3a-15_sparc.deb
- http://security.debian.org/pool/updates/main/s/samba/samba_2.2.3a-15_sparc.deb
- http://security.debian.org/pool/updates/main/s/samba/samba-common_2.2.3a-15_sparc.deb
- http://security.debian.org/pool/updates/main/s/samba/smbclient_2.2.3a-15_sparc.deb
- http://security.debian.org/pool/updates/main/s/samba/smbfs_2.2.3a-15_sparc.deb
- http://security.debian.org/pool/updates/main/s/samba/swat_2.2.3a-15_sparc.deb
- http://security.debian.org/pool/updates/main/s/samba/winbind_2.2.3a-15_sparc.deb
- http://security.debian.org/pool/updates/main/s/samba/libsmbclient_2.2.3a-15_sparc.deb
MD5-kontrolsummer for de listede filer findes i den originale sikkerhedsbulletin.
MD5-kontrolsummer for de listede filer findes i den reviderede sikkerhedsbulletin.