samba-3.0.24-10AX
エラータID: AXSA:2008-78:02
リリース日:
2008/08/21 Thursday - 20:17
題名:
samba-3.0.24-10AX
影響のあるチャネル:
Asianux Server 3 for x86
Asianux Server 3 for x86_64
Asianux Server 3 for ppc
Asianux Server 3 for ia64
Severity:
High
Description:
以下項目について対処しました。
[Security Fix]
Samba の receive_smb_raw 関数には、SMB レスポンスの取り扱いに不備があるために、ヒープベースのバッファオーバーフローの脆弱性が存在します。(CVE-2008-1105)
一部CVEの翻訳文はJVNからの引用になります。
http://jvndb.jvn.jp/
解決策:
パッケージをアップデートしてください
CVE:
CVE-2008-1105
Heap-based buffer overflow in the receive_smb_raw function in util/sock.c in Samba 3.0.0 through 3.0.29 allows remote attackers to execute arbitrary code via a crafted SMB response.
Heap-based buffer overflow in the receive_smb_raw function in util/sock.c in Samba 3.0.0 through 3.0.29 allows remote attackers to execute arbitrary code via a crafted SMB response.
追加情報:
N/A
ダウンロード:
Asianux Server 3 for x86
- samba-3.0.24-10AX.i386.rpm
MD5: 53a8e5d2803def458891d605b96975ba
SHA-256: 69911547c5f16f3b08c72aa298c6addf03431fa6413b695cff64c50befb15796
Size: 16.85 MB - samba-client-3.0.24-10AX.i386.rpm
MD5: 7768d288783338398988c98901e28a99
SHA-256: f12cbaaaf3348d2eacff41ea069eb025c4a0c377944ed08c77477921816f627c
Size: 4.33 MB - samba-common-3.0.24-10AX.i386.rpm
MD5: 327f76bad64d4bf089b9446b32ccc637
SHA-256: 1bbeb5b388d6835b5096557cd9a53d71f572c2c0bb953181a84e7807c9ba1eed
Size: 8.75 MB - samba-swat-3.0.24-10AX.i386.rpm
MD5: 5aec7c8368ff476fa215bf994bee7c37
SHA-256: 84b1273b81d1ddd0112abfd748118966e6c9f2a3e100e5b7777567b883c39775
Size: 8.82 MB
Asianux Server 3 for x86_64
- samba-3.0.24-10AX.x86_64.rpm
MD5: b1c42845cbe551a1a9eb77a575ed6536
SHA-256: 3010f53d53d92cc669d8a3afbbb8cda66ddf47fb541a358e19248cd5ce84b9fe
Size: 16.95 MB - samba-client-3.0.24-10AX.x86_64.rpm
MD5: 6e1d7763a4ada69c697f0220277f49ec
SHA-256: bc8fc735d70f52281cc72ac636eb6268657b75a0628977339305be5c68c660b0
Size: 4.45 MB - samba-common-3.0.24-10AX.x86_64.rpm
MD5: 1e1298ba0dc1eecd291be2c3f6f8d8a9
SHA-256: aceb9dd38d0f0d75d666c8a8844ef1165e53d98ddc00292087989ac1e7f6de41
Size: 8.97 MB - samba-swat-3.0.24-10AX.x86_64.rpm
MD5: dfc929541a3dfa817db7badbd97d6bcb
SHA-256: 10ecc1371e9547a0e11db8951d40a46f902a87576a111ff4c45a13e4b19a812b
Size: 8.83 MB