Test ID:	1.3.6.1.4.1.25623.1.0.69064
Category:	Mandrake Local Security Checks
Title:	Mandriva Security Advisory MDVSA-2011:038 (samba)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to samba announced via advisory MDVSA-2011:038. A vulnerability has been found and corrected in samba: All current released versions of Samba are vulnerable to a denial of service caused by memory corruption. Range checks on file descriptors being used in the FD_SET macro were not present allowing stack corruption. This can cause the Samba code to crash or to loop attempting to select on a bad file descriptor set (CVE-2011-0719). Packages for 2009.0 are provided as of the Extended Maintenance Program. Please visit this link to learn more: http://store.mandriva.com/product_info.php?cPath=149&products_id=490 The updated packages have been patched to correct this issue. Affected: 2009.0, 2010.0, 2010.1, Corporate 4.0, Enterprise Server 5.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. http://www.securityspace.com/smysecure/catid.html?in=MDVSA-2011:038 Risk factor : Medium CVSS Score: 5.0
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2011-0719 1025132 http://www.securitytracker.com/id?1025132 43482 http://secunia.com/advisories/43482 43503 http://secunia.com/advisories/43503 43512 http://secunia.com/advisories/43512 43517 http://secunia.com/advisories/43517 43556 http://secunia.com/advisories/43556 43557 http://secunia.com/advisories/43557 43843 http://secunia.com/advisories/43843 46597 http://www.securityfocus.com/bid/46597 ADV-2011-0517 http://www.vupen.com/english/advisories/2011/0517 ADV-2011-0518 http://www.vupen.com/english/advisories/2011/0518 ADV-2011-0519 http://www.vupen.com/english/advisories/2011/0519 ADV-2011-0520 http://www.vupen.com/english/advisories/2011/0520 ADV-2011-0522 http://www.vupen.com/english/advisories/2011/0522 ADV-2011-0541 http://www.vupen.com/english/advisories/2011/0541 ADV-2011-0702 http://www.vupen.com/english/advisories/2011/0702 APPLE-SA-2011-06-23-1 http://lists.apple.com/archives/security-announce/2011//Jun/msg00000.html DSA-2175 http://www.debian.org/security/2011/dsa-2175 FEDORA-2011-3118 http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056241.html FEDORA-2011-3120 http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056229.html HPSBUX02657 http://marc.info/?l=bugtraq&m=130835366526620&w=2 MDVSA-2011:038 http://www.mandriva.com/security/advisories?name=MDVSA-2011:038 RHSA-2011:0305 http://www.redhat.com/support/errata/RHSA-2011-0305.html RHSA-2011:0306 http://www.redhat.com/support/errata/RHSA-2011-0306.html SSA:2011-059-01 http://slackware.com/security/viewer.php?l=slackware-security&y=2011&m=slackware-security.593629 SSRT100460 USN-1075-1 http://www.ubuntu.com/usn/USN-1075-1 http://samba.org/samba/security/CVE-2011-0719.html http://support.apple.com/kb/HT4723 http://www.samba.org/samba/history/samba-3.3.15.html http://www.samba.org/samba/history/samba-3.4.12.html http://www.samba.org/samba/history/samba-3.5.7.html https://bugzilla.redhat.com/show_bug.cgi?id=678328 samba-fdset-dos(65724) https://exchange.xforce.ibmcloud.com/vulnerabilities/65724
Copyright	Copyright (c) 2011 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.