| AnNyung Official Homepage | Home > Update [ 1.3 ] |
|
HOME What is AnNyung Documents Packages System White Paper Download Update . 3.x [RSS] . 2.x [RSS] . 1.3 [RSS] . 1.2 [RSS] . 1.1 [RSS] . 1.0 [RSS] FAQ Hardware RoadMap Gallery |
|
samba 보안 업데이트 
Web Browser 로는 FTP 접속이 불가능 합니다. 문서번호 : 1179683237 업데이트 : 2007.05.21 상세내용 Samba 는 유닉스와 윈도우즈간의 네트워크 통신을 위한 SMB 프로토콜 을 지원한다. . Security fix . CVE-2007-2446: Multiple heap-based buffer overflows in the NDR parsing in smbd in Samba 3.0.0 through 3.0.25rc3 allow remote attackers to execute arbitrary code via crafted MS-RPC requests. . CVE-2007-2447: The MS-RPC functionality in smbd in Samba 3.0.0 through 3.0.25rc3 allows remote attackers to execute arbitrary commands via shell metacharacters involving the (1) SamrChangePassword function, when the "username map script" smb.conf option is enabled, and allows remote authenticated users to execute commands via shell metacharacters involving other MS-RPC functions in the (2) remote printer and (3) file share management. . CVE-2007-0452: smbd in Samba 3.0.6 through 3.0.23d allows remote authenticated users to cause a denial of service (memory and CPU exhaustion) by renaming a file in a way that prevents a request from being removed from the deferred open queue, which triggers an infinite loop. . Update - readd idmap_rid.so - add dependency krb5, openldap Autoupdates 지원 : Packages System pkgadd -F "samba*" update 패키지 RPMS : . samba-common-3.0.10-4.i686.rpm . samba-3.0.10-4.i686.rpm . samba-clients-3.0.10-4.i686.rpm . samba-swat-3.0.10-4.i686.rpm SRPMS : . samba-3.0.10-4.src.rpm 참고 : 없음 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2446 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2447 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0452 |
Home > Update [ 1.3 ]
Copyright 2024 OOPS Development Organization
LAST MODIFIED: 2018/04/10