[Bug 978458] Re: CVE-2012-1182: "root" credential remote code execution
Bug Watch Updater
978458 at bugs.launchpad.net
Sat Oct 28 05:25:28 UTC 2017
Launchpad has imported 9 comments from the remote bug at
https://bugzilla.redhat.com/show_bug.cgi?id=811392.
If you reply to an imported comment from within Launchpad, your comment
will be sent to the remote bug automatically. Read more about
Launchpad's inter-bugtracker facilities at
https://help.launchpad.net/InterBugTracking.
------------------------------------------------------------------------
On 2012-04-10T21:35:42+00:00 Vincent wrote:
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include this bug ID and the
bug IDs of this bug's parent bugs filed against the "Security Response"
product (the top-level CVE bugs). Please mention the CVE IDs being fixed
in the RPM changelog when available.
Bodhi update submission link:
https://admin.fedoraproject.org/updates/new/?type_=security&bugs=804093
Please note: this issue affects multiple supported versions of Fedora.
Only one tracking bug has been filed; please ensure that it is only closed
when all affected versions are fixed.
[bug automatically created by: add-tracking-bugs]
Reply at:
https://bugs.launchpad.net/ubuntu/+source/samba/+bug/978458/comments/4
------------------------------------------------------------------------
On 2012-04-11T13:06:14+00:00 Jan wrote:
*** Bug 811543 has been marked as a duplicate of this bug. ***
Reply at:
https://bugs.launchpad.net/ubuntu/+source/samba/+bug/978458/comments/8
------------------------------------------------------------------------
On 2012-04-12T14:49:04+00:00 Fedora wrote:
samba-3.6.4-82.fc17.1 has been submitted as an update for Fedora 17.
https://admin.fedoraproject.org/updates/samba-3.6.4-82.fc17.1
Reply at:
https://bugs.launchpad.net/ubuntu/+source/samba/+bug/978458/comments/9
------------------------------------------------------------------------
On 2012-04-12T14:49:36+00:00 Fedora wrote:
samba-3.6.4-82.fc16 has been submitted as an update for Fedora 16.
https://admin.fedoraproject.org/updates/samba-3.6.4-82.fc16
Reply at:
https://bugs.launchpad.net/ubuntu/+source/samba/+bug/978458/comments/10
------------------------------------------------------------------------
On 2012-04-12T14:50:38+00:00 Fedora wrote:
samba-3.5.14-73.fc15.1 has been submitted as an update for Fedora 15.
https://admin.fedoraproject.org/updates/samba-3.5.14-73.fc15.1
Reply at:
https://bugs.launchpad.net/ubuntu/+source/samba/+bug/978458/comments/11
------------------------------------------------------------------------
On 2012-04-13T06:12:11+00:00 Fedora wrote:
Package samba-3.6.4-82.fc17.1:
* should fix your issue,
* was pushed to the Fedora 17 testing repository,
* should be available at your local mirror within two days.
Update it with:
# su -c 'yum update --enablerepo=updates-testing samba-3.6.4-82.fc17.1'
as soon as you are able to.
Please go to the following url:
https://admin.fedoraproject.org/updates/FEDORA-2012-5793/samba-3.6.4-82.fc17.1
then log in and leave karma (feedback).
Reply at:
https://bugs.launchpad.net/ubuntu/+source/samba/+bug/978458/comments/23
------------------------------------------------------------------------
On 2012-04-13T21:34:14+00:00 Fedora wrote:
samba-3.6.4-82.fc16 has been pushed to the Fedora 16 stable repository.
If problems still persist, please make note of it in this bug report.
Reply at:
https://bugs.launchpad.net/ubuntu/+source/samba/+bug/978458/comments/26
------------------------------------------------------------------------
On 2012-04-18T23:09:15+00:00 Fedora wrote:
samba-3.6.4-82.fc17.1 has been pushed to the Fedora 17 stable
repository. If problems still persist, please make note of it in this
bug report.
Reply at:
https://bugs.launchpad.net/ubuntu/+source/samba/+bug/978458/comments/27
------------------------------------------------------------------------
On 2012-04-22T03:27:08+00:00 Fedora wrote:
samba-3.5.14-73.fc15.1 has been pushed to the Fedora 15 stable
repository. If problems still persist, please make note of it in this
bug report.
Reply at:
https://bugs.launchpad.net/ubuntu/+source/samba/+bug/978458/comments/28
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to samba in Ubuntu.
https://bugs.launchpad.net/bugs/978458
Title:
CVE-2012-1182: "root" credential remote code execution
Status in samba package in Ubuntu:
Fix Released
Status in samba source package in Lucid:
Fix Released
Status in samba source package in Natty:
Fix Released
Status in samba source package in Oneiric:
Fix Released
Status in samba source package in Precise:
Fix Released
Status in samba source package in Hardy:
Fix Released
Status in samba package in CentOS:
Fix Released
Status in samba package in Debian:
Fix Released
Status in samba package in Fedora:
Fix Released
Bug description:
CVE-2012-1182 was recently made public for a remote, unauthenticated,
root code execution flaw in most samba versions 3.0+:
https://www.samba.org/samba/security/CVE-2012-1182
I believe Ubuntu's packages to be vulnerable. As the CVE is already
public and patches are in the wild, I am flagging this as a security
vulnerability but will un-privatize it shortly.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/samba/+bug/978458/+subscriptions
More information about the foundations-bugs
mailing list