: Log in!

メインメニュー
Google


ウェブ 検索
サイト内検索
トップ  >  Linux14歩  >  2014-06-27 sambaのupdate
20140627 samba-3.6.24にupdateしました


Release Notes for Samba 3.6.24 June 23, 2014

This is a security release in order to address
CVE-2014-0244 (Denial of service - CPU loop) and
CVE-2014-3493 (Denial of service - Server crash/memory corruption).

. CVE-2014-0244:
  All current released versions of Samba are vulnerable to a denial of
  service on the nmbd NetBIOS name services daemon. A malformed packet
  can cause the nmbd server to loop the CPU and prevent any further
  NetBIOS name service.

  This flaw is not exploitable beyond causing the code to loop expending
  CPU resources.

. CVE-2014-3493:
  All current released versions of Samba are affected by a denial of service
  crash involving overwriting memory on an authenticated connection to the
  smbd file server.

Changes since 3.6.22:
---------------------

. Jeremy Allison <jra at samba.org>
  * BUG 10633: CVE-2014-0244: Fix nmbd denial of service.
  * BUG 10654: CVE-2014-3493: Fix segmentation fault in
    smbd_marshall_dir_entry()'s SMB_FIND_FILE_UNIX handler.
投票数:27 平均点:4.81
前
2014-06-27 phpmyadminのupdate
カテゴリートップ
Linux14歩
次
2014-06-28 phpのupdate