Pardus alert 2010-23 (samba)

From:
    	     
 
Eren Turkay <eren@pardus.org.tr> 
To:
    	     
 
pardus-security@pardus.org.tr 
Subject:
    	     
 
[Pardus-security] [PLSA 2010-23] Samba: Privilege Escalation 
Date:
    	     
 
Tue,  2 Feb 2010 21:32:35 +0200 (EET)
Message-ID:
    	     
 
<20100202193235.E040DA7AB26@lider.pardus.org.tr>
Archive-link:
    	     
 
Article, Thread
              
------------------------------------------------------------------------
Pardus Linux Security Advisory 2010-23            security@pardus.org.tr
------------------------------------------------------------------------
      Date: 2010-02-02
  Severity: 4
      Type: Local
------------------------------------------------------------------------

Summary
=======

A security issue has been fixed in Samba, which  can  be  exploited  by 
malicious, local users to disclose potentially sensitive information and
potentially gain escalated privileges. 


Description
===========

Ronald Volgers discovered that the mount.cifs utility, when installed as
a setuid program, suffered from a race condition  when  verifying  user 
permissions. A local attacker could  trick  samba  into  mounting  over 
arbitrary locations, leading to a root privilege escalation. 


Affected packages:

  Pardus 2009:
    samba, all before 3.3.10-50-11


Resolution
==========

There are update(s) for samba. You can update them via Package  Manager 
or with a single command from console: 

    pisi up samba

References
==========

  * http://bugs.pardus.org.tr/show_bug.cgi?id=12143
  * https://bugzilla.samba.org/show_bug.cgi?id=6853
  * http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3297

------------------------------------------------------------------------

_______________________________________________
Pardus-security mailing list
Pardus-security@pardus.org.tr
http://liste.pardus.org.tr/mailman/listinfo/pardus-security