SuSE Update For Samba OpenSUSE-SU-2012:0508-1 (samba) Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

Samba upgrade to version 3.6.3 fixes the following security issue: - PIDL based autogenerated code allows overwriting beyond of allocated array. Remove attackers could exploit that to execute arbitrary code as root (CVE-2012-1182, bso#8815, bnc#752797) Please see /usr/share/doc/packages/samba/WHATSNEW.txt from the samba-doc package or the package change log (rpm -q --changelog samba) for more details of the version update.

Affected

update on openSUSE 11.4

Severity

Classification

CVE CVE-2012-1182
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

SLES10: Recommended update for Linux Kernel (x86)
SLES10: Security update for MozillaFirefox
SLES10: Security update for freetype2
SLES10: Security update for clamav
SLES10: Security update for IBM Java 1.4.2

SuSE Update for samba openSUSE-SU-2012:0508-1 (samba)

Take action and discover your vulnerabilities