AnNyung Official Homepage Home > Update [ 1.3 ]  

HOME
What is AnNyung
Documents
Packages System
White Paper
Download
Update
  . 3.x [RSS]
  . 2.x [RSS]
  . 1.3 [RSS]
  . 1.2 [RSS]
  . 1.1 [RSS]
  . 1.0 [RSS]
FAQ
Hardware
RoadMap
Gallery

  Go oops.org
  AnNyung banner 88x31

  AnNyung 1 banner 80x15
  AnNyung 2 banner 80x15
  AnNyung 3 banner 80x15
  AnNyung banner 80x15
  AnNyung banner 80x15



samba 보안 업데이트
Web Browser 로는 FTP 접속이 불가능 합니다.

문서번호 : 1179683237
업데이트 : 2007.05.21


상세내용

Samba 는 유닉스와 윈도우즈간의 네트워크 통신을 위한 SMB 프로토콜
을 지원한다.

. Security fix

. CVE-2007-2446:
Multiple heap-based buffer overflows in the NDR parsing in smbd in Samba 3.0.0
through 3.0.25rc3 allow remote attackers to execute arbitrary code via crafted
MS-RPC requests.

. CVE-2007-2447:
The MS-RPC functionality in smbd in Samba 3.0.0 through 3.0.25rc3 allows remote
attackers to execute arbitrary commands via shell metacharacters involving the
(1) SamrChangePassword function, when the "username map script" smb.conf option
is enabled, and allows remote authenticated users to execute commands via shell
metacharacters involving other MS-RPC functions in the (2) remote printer and
(3) file share management.

. CVE-2007-0452:
smbd in Samba 3.0.6 through 3.0.23d allows remote authenticated users to cause
a denial of service (memory and CPU exhaustion) by renaming a file in a way that
prevents a request from being removed from the deferred open queue, which
triggers an infinite loop.


. Update
  - readd idmap_rid.so
  - add dependency krb5, openldap



Autoupdates 지원 : Packages System
    pkgadd -F "samba*"


update 패키지

  RPMS :

    . samba-common-3.0.10-4.i686.rpm
    . samba-3.0.10-4.i686.rpm
    . samba-clients-3.0.10-4.i686.rpm
    . samba-swat-3.0.10-4.i686.rpm

  SRPMS :

    . samba-3.0.10-4.src.rpm

참고 : 없음
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2446
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2447
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0452



    



 Home > Update [ 1.3 ]

Copyright 2024 OOPS Development Organization 
LAST MODIFIED: 2018/04/10