samba-3.0.33-3.38.0.1.AXS3
エラータID: AXSA:2012-264:01
Samba is the suite of programs by which a lot of PC-related machines share files, printers, and other information (such as lists of available files and printers). The Windows NT, OS/2, and Linux operating systems support this natively, and add-on packages can enable the same thing for DOS, Windows, VMS, UNIX of all kinds, MVS, and more. This package provides an SMB server that can be used to provide network services to SMB (sometimes called Lan Manager) clients. Samba uses NetBIOS over TCP/IP (NetBT) protocols and does NOT need the NetBEUI (Microsoft Raw NetBIOS frame) protocol.
Security issues fixed with this release:
CVE-2010-0926
The default configuration of smbd in Samba before 3.3.11, 3.4.x before 3.4.6, and 3.5.x before 3.5.0rc3, when a writable share exists, allows remote authenticated users to leverage a directory traversal vulnerability, and access arbitrary files, by using the symlink command in smbclient to create a symlink containing .. (dot dot) sequences, related to the combination of the unix extensions and wide links options.
CVE-2012-0870
Heap-based buffer overflow in process.c in smbd in Samba 3.0, as used in the file-sharing service on the BlackBerry PlayBook tablet before 2.0.0.7971 and other products, allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a Batched (aka AndX) request that triggers infinite recursion.
Fixed bugs:
• Because the smbclient sometimes failed to return the proper exit status code, using it in a script could cause the script to fail. This has been fixed.
Enhancement:
• Added support for Windows Server 2008 R2 domains.
Update packages.
The default configuration of smbd in Samba before 3.3.11, 3.4.x before 3.4.6, and 3.5.x before 3.5.0rc3, when a writable share exists, allows remote authenticated users to leverage a directory traversal vulnerability, and access arbitrary files, by using the symlink command in smbclient to create a symlink containing .. (dot dot) sequences, related to the combination of the unix extensions and wide links options.
Heap-based buffer overflow in process.c in smbd in Samba 3.0, as used in the file-sharing service on the BlackBerry PlayBook tablet before 2.0.0.7971 and other products, allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a Batched (aka AndX) request that triggers infinite recursion.
N/A
SRPMS
- samba-3.0.33-3.38.0.1.AXS3.src.rpm
MD5: da2a70e4984bb7ab0c2f1cd8ffe8a2ad
SHA-256: fb3c0b9774eb944c7b252d1896d0eeff0b292563ba0f4ed74fb9b168cc7a0670
Size: 48.21 MB
Asianux Server 3 for x86
- libsmbclient-3.0.33-3.38.0.1.AXS3.i386.rpm
MD5: 34ac014b152507c6f5dcf5ed4b95d802
SHA-256: ebd4abaf81185457b0a9878fa353fb8e9b35ebd50ddf3bef9e145a523f084c9e
Size: 909.67 kB - libsmbclient-devel-3.0.33-3.38.0.1.AXS3.i386.rpm
MD5: b304eaea890a493f9a48139b4e2fef91
SHA-256: 04ac5acc214c8dc95392c2a2fd59feb7aa3c109a3432c812b072fb2b78cba363
Size: 1.16 MB - samba-3.0.33-3.38.0.1.AXS3.i386.rpm
MD5: fa8505e36e482f5124407c9a401c1162
SHA-256: cf8a81e4fbd2f3a186a0d31f98864006d7c95dc252332f34aa6a2e0d08056b43
Size: 16.46 MB - samba-client-3.0.33-3.38.0.1.AXS3.i386.rpm
MD5: 19b72f075799f850a24991057b8a2687
SHA-256: a9914b0094ba3c6e8f04b81fd4067cbc0bb0e55dab2eaa71ea0a9b2529f1fdf6
Size: 5.72 MB - samba-common-3.0.33-3.38.0.1.AXS3.i386.rpm
MD5: 1973ad66e887c0bd33dd8c1007a928f0
SHA-256: 48ff9c1a809a5a5e7f72f71859d6bccf837b945beea0d44a385912104b38412b
Size: 6.84 MB - samba-swat-3.0.33-3.38.0.1.AXS3.i386.rpm
MD5: eae7ad8d3b0c33a257b6dae51cb7a789
SHA-256: f179309638e10c27d0f59f43e3d2bf84ad5cac486f74164993db93185d5e2f9e
Size: 8.93 MB
Asianux Server 3 for x86_64
- libsmbclient-3.0.33-3.38.0.1.AXS3.x86_64.rpm
MD5: e04cb947977e1525bf7f45002cca2f6d
SHA-256: 22cb1b595e099cff85176316499f34508a795815634c2a4da697670517358c71
Size: 918.11 kB - libsmbclient-devel-3.0.33-3.38.0.1.AXS3.x86_64.rpm
MD5: 96a60752c14ad782ce4b7b55c3e914ba
SHA-256: 9c7d723281435075304771afdbe75c78fd0ed82faa5e4715a5a7c3e929e35b7d
Size: 1.17 MB - samba-3.0.33-3.38.0.1.AXS3.x86_64.rpm
MD5: 8260e2a98a56913689aa7a190524d5c9
SHA-256: 63ed52d5b9c58afae87da217f192c2cd930e9459d299c9975c19510c7bd856cc
Size: 16.54 MB - samba-client-3.0.33-3.38.0.1.AXS3.x86_64.rpm
MD5: f5dee14f66ee47539f0f61879d989ca5
SHA-256: 7d98bccb76a41c14e61392fcd03193d357cbb5d314c8f26196b2d4077e3e0b92
Size: 5.78 MB - samba-common-3.0.33-3.38.0.1.AXS3.x86_64.rpm
MD5: 9ee63c4a8af41804c4af4d90ae20f059
SHA-256: 97da66cb3e23a4436eadebac702262329dbe36433c47f81e85231d4b9e4bf926
Size: 6.96 MB - samba-swat-3.0.33-3.38.0.1.AXS3.x86_64.rpm
MD5: 00f3751d9ba55d7a1934186d5df43166
SHA-256: e0a1b3dac02430af86637e752a68235b08d02d0609e9d70a47de1180c7c1c534
Size: 8.93 MB