[Bug 932239] Re: Multiple Samba security vulnerabilities
Steve Beattie
sbeattie at ubuntu.com
Fri Feb 17 22:46:10 UTC 2012
Also, you can check the status yourself of the CVEs we are aware of at
the Ubuntu Security cve tracker: http://people.canonical.com/~ubuntu-
security/cve/
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to samba in Ubuntu.
https://bugs.launchpad.net/bugs/932239
Title:
Multiple Samba security vulnerabilities
Status in “samba” package in Ubuntu:
Invalid
Bug description:
Please upgrade Samba to 3.4.14 or later in Manzanita
High...
CVE-2010-3069 Samba 3.0.x to 3.5.x are affected by a buffer overrun vulnerability
Medium...
CVE-2011-2522
CVE-2011-2694
CVE-2011-0719 Samba 3.x before 3.3.15, 3.4.x before 3.4.12, and 3.5.x before 3.5.7 does not perform range checks for file descriptors before use of the FD_SET macro
CVE-2010-1635
CVE-2010-1642 sending specially crafted 'Session Setup AndX' requests, an
unauthenticated, remote attacker can exploit these vulnerabilities
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/samba/+bug/932239/+subscriptions
More information about the foundations-bugs
mailing list