Gentoo Local Security Checks : Gentoo Security Advisory GLSA 200903-07 (samba)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.63538

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 200903-07 (samba)

Resumen: The remote host is missing updates announced in;advisory GLSA 200903-07.

Descripción: Summary:
The remote host is missing updates announced in
advisory GLSA 200903-07.

Vulnerability Insight:
A missing boundary check in Samba might lead to the disclosure of memory
contents.

Solution:
All Samba users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=net-fs/samba-3.0.33'

CVSS Score:
8.5

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:N/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2008-4314
1021287
http://www.securitytracker.com/id?1021287
249087
http://sunsolve.sun.com/search/document.do?assetkey=1-26-249087-1
32494
http://www.securityfocus.com/bid/32494
32813
http://secunia.com/advisories/32813
32919
http://secunia.com/advisories/32919
32951
http://secunia.com/advisories/32951
32968
http://secunia.com/advisories/32968
36281
http://secunia.com/advisories/36281
50230
http://osvdb.org/50230
ADV-2008-3277
http://www.vupen.com/english/advisories/2008/3277
ADV-2009-0067
http://www.vupen.com/english/advisories/2009/0067
ADV-2009-2245
http://www.vupen.com/english/advisories/2009/2245
FEDORA-2008-10518
http://www.redhat.com/archives/fedora-package-announce/2008-December/msg00021.html
FEDORA-2008-10638
http://www.redhat.com/archives/fedora-package-announce/2008-December/msg00141.html
HPSBTU02454
http://marc.info/?l=bugtraq&m=125003356619515&w=2
SSA:2008-333-01
http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.453684
SSRT080172
SUSE-SR:2008:027
http://lists.opensuse.org/opensuse-security-announce/2008-12/msg00002.html
USN-680-1
http://www.ubuntu.com/usn/USN-680-1
http://us1.samba.org/samba/ftp/patches/security/samba-3.0.32-CVE-2008-4314.patch
http://us1.samba.org/samba/security/CVE-2008-4314.html

Copyright Copyright (C) 2009 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.63538
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200903-07 (samba)
Resumen:	The remote host is missing updates announced in;advisory GLSA 200903-07.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 200903-07. Vulnerability Insight: A missing boundary check in Samba might lead to the disclosure of memory contents. Solution: All Samba users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=net-fs/samba-3.0.33' CVSS Score: 8.5 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2008-4314 1021287 http://www.securitytracker.com/id?1021287 249087 http://sunsolve.sun.com/search/document.do?assetkey=1-26-249087-1 32494 http://www.securityfocus.com/bid/32494 32813 http://secunia.com/advisories/32813 32919 http://secunia.com/advisories/32919 32951 http://secunia.com/advisories/32951 32968 http://secunia.com/advisories/32968 36281 http://secunia.com/advisories/36281 50230 http://osvdb.org/50230 ADV-2008-3277 http://www.vupen.com/english/advisories/2008/3277 ADV-2009-0067 http://www.vupen.com/english/advisories/2009/0067 ADV-2009-2245 http://www.vupen.com/english/advisories/2009/2245 FEDORA-2008-10518 http://www.redhat.com/archives/fedora-package-announce/2008-December/msg00021.html FEDORA-2008-10638 http://www.redhat.com/archives/fedora-package-announce/2008-December/msg00141.html HPSBTU02454 http://marc.info/?l=bugtraq&m=125003356619515&w=2 SSA:2008-333-01 http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.453684 SSRT080172 SUSE-SR:2008:027 http://lists.opensuse.org/opensuse-security-announce/2008-12/msg00002.html USN-680-1 http://www.ubuntu.com/usn/USN-680-1 http://us1.samba.org/samba/ftp/patches/security/samba-3.0.32-CVE-2008-4314.patch http://us1.samba.org/samba/security/CVE-2008-4314.html
Copyright	Copyright (C) 2009 E-Soft Inc.