CentOS Update For Samba3x CESA-2011:0306 Centos5 X86_64 Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

Samba is a suite of programs used by machines to share files, printers, and other information. A flaw was found in the way Samba handled file descriptors. If an attacker were able to open a large number of file descriptors on the Samba server, they could flip certain stack bits to &quot 1&quot values, resulting in the Samba server (smbd) crashing. (CVE-2011-0719) Red Hat would like to thank the Samba team for reporting this issue. Users of Samba are advised to upgrade to these updated packages, which contain a backported patch to resolve this issue. After installing this update, the smb service will be restarted automatically.

Affected

samba3x on CentOS 5

References

http://lists.centos.org/pipermail/centos-announce/2011-April/017392.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-0719
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

CentOS Security Advisory CESA-2009:1138 (openswan)
CentOS Security Advisory CESA-2009:1179 (bind)
CentOS Security Advisory CESA-2009:1036 (ipsec-tools)
CentOS Security Advisory CESA-2009:0057 (squirrelmail)
CentOS Security Advisory CESA-2009:1646 (libtool)

CentOS Update for samba3x CESA-2011:0306 centos5 x86_64

Take action and discover your vulnerabilities