1. Forum
  2. Usenet
  3. LINUX.DEBIAN.ANNOUNCE.SEC

  • [SECURITY] [DSA 3816-1] samba security update

    From Salvatore Bonaccorso@1:229/2 to All on Thu Mar 23 12:30:01 2017
    From: [email protected]

    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA512

    - ------------------------------------------------------------------------- Debian Security Advisory DSA-3816-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso
    March 23, 2017 https://www.debian.org/security/faq
    - -------------------------------------------------------------------------

    Package : samba
    CVE ID : CVE-2017-2619

    Jann Horn of Google discovered a time-of-check, time-of-use race
    condition in Samba, a SMB/CIFS file, print, and login server for Unix. A malicious client can take advantage of this flaw by exploting a symlink
    race to access areas of the server file system not exported under a
    share definition.

    For the stable distribution (jessie), this problem has been fixed in
    version 2:4.2.14+dfsg-0+deb8u4.

    For the unstable distribution (sid), this problem has been fixed in
    version 2:4.5.6+dfsg-2.

    We recommend that you upgrade your samba packages.

    Further information about Debian Security Advisories, how to apply
    these updates to your system and frequently asked questions can be
    found at: https://www.debian.org/security/

    Mailing list: [email protected]
    -----BEGIN PGP SIGNATURE-----

    iQKTBAEBCgB9FiEERkRAmAjBceBVMd3uBUy48xNDz0QFAljTrzNfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2 NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQACgkQBUy48xND z0RthhAAnOMWMQYULwrwAWxUEOkrb1/4pzE/vuCBIb3dVR08HheUfdp7WIComgl5 aO39kndwqBIUeuMGu7HtUtYpnA1NfDpjA0NmcZerioFy4DJLXV3FEqOI+7J3uuSu pPfUGU68OGy2GyZHtxYX+lq7al+fKAHkS1psOpVCwC7LCX6O3todbXAyDr+/VSjf Vfy5xFeX+VX/sNN3Mkv6m/p4qY//4tESBQYZBE9EJ800bwJHNIcE0QnEi6BtYjRi iYgfQQVGnk0biWp0TfITyHef7ptKBTHWFAYzqjYCArWSGjXaVkRj8fuXQPB/yz16 Gr75bLIJBkqsY+X7mO5OE6Sp0kWcNqo+IOoxmVjwx7nfeviiHqIer/feFlDLXlij JBa62iCmacjkfzHaR62zImzKph6rOmw32R6vqJeXOgvZRacdsScpdf6n8hgcdQHo mEw0zlJ5TmDUwBo+9P0UjDoaGldoc15jo0aBMO07YFQ0zNSX53i40alkPnwroovL 27T+VjS6LLCbdYQwnq/gzHo7TweZyb7E/AnbGuEx3vvWA+RDIKKCec4vA6mzg8zd KTutOmyL444hTMaXpVOTI3qytW725PjE8Nqe8WGSTJb1KwvUz3MmPaH4Luidg5vO bmDBuBXVx8cwriVrgaJKRQbZRrRejHW0fbI/C5+oX+hj9PjdQEQ=
    =Iab8
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: you cannot sedate... all the things you hate (1:229/2)