Technical Description

Multiple vulnerabilities have been identified in Fedora, which could be exploited by remote or local attackers to cause a denial of service or execute arbitrary code. These issues are caused by errors in Samba. For additional information, see : VUPEN/ADV-2007-1805

Affected Products

Fedora Core 5
Fedora Core 6

Solution

Upgrade the affected packages :

http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/

7863d7676375e34a4ec654ca2f8c75a7f20b2a69 SRPMS/samba-3.0.24-5.fc5.src.rpm
7863d7676375e34a4ec654ca2f8c75a7f20b2a69 noarch/samba-3.0.24-5.fc5.src.rpm
1db6b849abd55b7fe2673ad44bc1c2c622ac5653 ppc/samba-common-3.0.24-5.fc5.ppc.rpm
279cf8da0b9d8addbbb0c7bb85e486a585b4aa40 ppc/samba-swat-3.0.24-5.fc5.ppc.rpm
8f37d7ab9e8e342ef55f092d3d2bc5156f53c79d ppc/samba-client-3.0.24-5.fc5.ppc.rpm
5e9d4f7a56e9e848a66d152010eaec3ab5effe96 ppc/samba-3.0.24-5.fc5.ppc.rpm
1b72c4bd70e0544bd8ef12d11e38c531c5a264c0 ppc/debug/samba-debuginfo-3.0.24-5.fc5.ppc.rpm
3a689565ba1d6b4085265fcef5437572ceff609e x86_64/debug/samba-debuginfo-3.0.24-5.fc5.x86_64.rpm
9df353905246559fb108377c1d3ddd42ce720b8f x86_64/samba-common-3.0.24-5.fc5.x86_64.rpm
106746400b2dcb73aef2144e6cdfb8d392f3c3f4 x86_64/samba-swat-3.0.24-5.fc5.x86_64.rpm
8c2a533b52e006f42e2607cbbd315bb1743a77f6 x86_64/samba-client-3.0.24-5.fc5.x86_64.rpm
c80d2b934a23a3e0697e29a323b100337d7df851 x86_64/samba-3.0.24-5.fc5.x86_64.rpm
ea9579c77fd3ec61fa3a9ae3c1a6d993a23ae79f i386/samba-client-3.0.24-5.fc5.i386.rpm
dd15ab53deb35f7e939cbb5de9b4776cb6ca5d3d i386/samba-common-3.0.24-5.fc5.i386.rpm
f6f8a043b8b915b01c54d4c3c7e1053b939877af i386/debug/samba-debuginfo-3.0.24-5.fc5.i386.rpm
e0be2decc1c44265f5bc42fe41bc5d369d569041 i386/samba-3.0.24-5.fc5.i386.rpm
e64f8fc609d7ef302a599366f585f5b1535bfaa8 i386/samba-swat-3.0.24-5.fc5.i386.rpm

http://download.fedora.redhat.com/pub/fedora/linux/core/updates/6/

bc75db2a499fe79973da7e91cb60eb93cc3998b5 SRPMS/samba-3.0.24-5.fc6.src.rpm
bc75db2a499fe79973da7e91cb60eb93cc3998b5 noarch/samba-3.0.24-5.fc6.src.rpm
9f4c245cc72780dae747e0a5a77ab4a8b83be1d6 ppc/samba-3.0.24-5.fc6.ppc.rpm
33b2336c26326d9561615027342d6770ba2f96cb ppc/samba-common-3.0.24-5.fc6.ppc.rpm
8f74f83ba3ed151a313d297c458eb479d421b545 ppc/debug/samba-debuginfo-3.0.24-5.fc6.ppc.rpm
e64acacf6968299aa3a47e2514d2c6e3e68c25c4 ppc/samba-swat-3.0.24-5.fc6.ppc.rpm
f970336b989e47102e75342018015d0bbad1e1eb ppc/samba-client-3.0.24-5.fc6.ppc.rpm
5ad2e5522528d750df96ca9233ad996ea15f2bef x86_64/debug/samba-debuginfo-3.0.24-5.fc6.x86_64.rpm
6c52d37a44e5d57c43f27c4d92c42dcadcc0e786 x86_64/samba-client-3.0.24-5.fc6.x86_64.rpm
ad121ded33dcda91fc5a02e3498a937407952e02 x86_64/samba-common-3.0.24-5.fc6.x86_64.rpm
4011cb0f02ee91574902e545406ae1633a424b16 x86_64/samba-3.0.24-5.fc6.x86_64.rpm
8118155862f3bfd042b0a07fb78c8140aa65761d x86_64/samba-swat-3.0.24-5.fc6.x86_64.rpm
31342dceeb5dd735af22addb25b9393b665ab81a i386/samba-3.0.24-5.fc6.i386.rpm
3cd8779e3967dc443b8a5f6dcb3613f31e1520bb i386/samba-common-3.0.24-5.fc6.i386.rpm
0a35da5e3fd8453670aa46f073604762c14a61d8 i386/samba-swat-3.0.24-5.fc6.i386.rpm
79418e3227389b4442ebde3a5ce12f37be018e31 i386/samba-client-3.0.24-5.fc6.i386.rpm
460ccc61bf05d1c0dbca7a3f92fde7f9b44b8735 i386/debug/samba-debuginfo-3.0.24-5.fc6.i386.rpm

References

http://www.vupen.com/english/advisories/2007/1806
https://www.redhat.com/archives/fedora-package-announce/2007-May/msg00029.html
https://www.redhat.com/archives/fedora-package-announce/2007-May/msg00030.html

ChangeLog

2007-05-14 : Initial release

Vulnerability Management

Subscribe to VUPEN VNS and receive real-time alerts when new advisories or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form.