LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

PostgreSQL 9.3 beta: Federated databases and more

LWN.net Weekly Edition for May 9, 2013

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

SUSE alert SUSE-SU-2012:0501-2 (Samba)



From:
    	      opensuse-security@opensuse.org 


To:
    	      opensuse-security-announce@opensuse.org 


Subject:
    	      [security-announce] SUSE-SU-2012:0501-2: critical: Security update for Samba 


Date:
    	      Sat, 14 Apr 2012 14:08:19 +0200 (CEST)


Message-ID:
    	      <20120414120819.B3FF7321CD@maintenance.suse.de>


Archive-link:
    	      Article, Thread
              


   SUSE Security Update: Security update for Samba
______________________________________________________________________________

Announcement ID:    SUSE-SU-2012:0501-2
Rating:             critical
References:         #752797 
Cross-References:   CVE-2012-1182
Affected Products:
                    SUSE CORE 9
______________________________________________________________________________

   An update that fixes one vulnerability is now available.

Description:


   A remote code execution flaw in Samba has been fixed:

   * CVE-2012-1182: PIDL based autogenerated code uses
   client supplied size values which allows attackers to write
   beyond the allocated array size

   Security Issue reference:

   * CVE-2012-1182
   <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1182
   >



Package List:

   - SUSE CORE 9 (i586 s390 s390x x86_64):

      libsmbclient-3.0.26a-0.23
      libsmbclient-devel-3.0.26a-0.23
      samba-3.0.26a-0.23
      samba-client-3.0.26a-0.23
      samba-doc-3.0.26a-0.23
      samba-pdb-3.0.26a-0.23
      samba-python-3.0.26a-0.23
      samba-vscan-0.3.6b-0.51
      samba-winbind-3.0.26a-0.23

   - SUSE CORE 9 (x86_64):

      libsmbclient-32bit-9-201204111235
      samba-32bit-9-201204111235
      samba-client-32bit-9-201204111235
      samba-winbind-32bit-9-201204111235

   - SUSE CORE 9 (s390x):

      libsmbclient-32bit-9-201204111252
      samba-32bit-9-201204111252
      samba-client-32bit-9-201204111252
      samba-winbind-32bit-9-201204111252


References:

   http://support.novell.com/security/cve/CVE-2012-1182.html
   https://bugzilla.novell.com/752797
   http://download.novell.com/patch/finder/?keywords=a2cf0ea...

-- 
To unsubscribe, e-mail: opensuse-security-announce+unsubscribe@opensuse.org
For additional commands, e-mail: opensuse-security-announce+help@opensuse.org
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds