[Bug 235912] Re: [CVE-2008-1105] Samba: boundary failure when parsing SMB responses
Launchpad Bug Tracker
235912 at bugs.launchpad.net
Tue Jun 17 22:06:35 BST 2008
This bug was fixed in the package samba - 3.0.28a-1ubuntu4.2
---------------
samba (3.0.28a-1ubuntu4.2) hardy-security; urgency=low
* SECURITY UPDATE: heap overflow when processing crafted SMB responses
* debian/patches/security-CVE-2008-1105.patch: update util_sock.c to require
specifying the buffer size and update client.c, smbctool.c, smbfilter.c,
and process.c for these changes
* References:
CVE-2008-1105
LP: #235912
-- Jamie Strandboge <jamie at ubuntu.com> Tue, 17 Jun 2008 12:47:38
-0400
** Changed in: samba (Ubuntu Hardy)
Status: Fix Committed => Fix Released
** Changed in: samba (Ubuntu Gutsy)
Status: Fix Committed => Fix Released
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2007-4572
--
[CVE-2008-1105] Samba: boundary failure when parsing SMB responses
https://bugs.launchpad.net/bugs/235912
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to samba in ubuntu.
More information about the Ubuntu-server-bugs
mailing list