Advisories:rPSA-2008-0180
From rPath Wiki
rPath Security Advisory 2008-0180-2
Published: 2008-06-02
Updated
- 2008-06-03 added gamin to rPath Appliance Platform Linux Service 1
Products
- rPath Appliance Platform Linux Service 1
- rPath Linux 1
- rPath Linux 2
Rating
- Critical
Exposure Level Classification
- Remote Root Deterministic Unauthorized Access
Updated Versions
- gamin=conary.rpath.com@rpl:1/0.1.7-0.1-2
- samba=conary.rpath.com@rpl:1/3.0.30-0.1-1
- samba=conary.rpath.com@rpl:2/3.0.30-1-0.1
- samba-client=conary.rpath.com@rpl:1/3.0.30-0.1-1
- samba-client=conary.rpath.com@rpl:2/3.0.30-1-0.1
- samba-server=conary.rpath.com@rpl:1/3.0.30-0.1-1
- samba-server=conary.rpath.com@rpl:2/3.0.30-1-0.1
- samba-swat=conary.rpath.com@rpl:1/3.0.30-0.1-1
- samba-swat=conary.rpath.com@rpl:2/3.0.30-1-0.1
rPath Issue Tracking System
References
Description
- Previous versions of the samba package are vulnerable to an Arbitrary
- Code Execution attack in which a remote attacker may cause a heap-based
- buffer overflow via a maliciously crafted SMB response.
- In addition, because the gamin libraries are now required for some
- recent versions of samba, gamin has been added to rPath Appliance
- Platform Linux Service 1.
Copyright 2008 rPath, Inc. This file is distributed under the terms of the MIT License. A copy is available at http://www.rpath.com/permanent/mit-license.html