CentOS Update For Libtalloc CESA-2010:0698 Centos5 I386 Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

Samba is a suite of programs used by machines to share files, printers, and other information. A missing array boundary checking flaw was found in the way Samba parsed the binary representation of Windows security identifiers (SIDs). A malicious client could send a specially-crafted SMB request to the Samba server, resulting in arbitrary code execution with the privileges of the Samba server (smbd). (CVE-2010-3069) Users of Samba are advised to upgrade to these updated packages, which contain a backported patch to correct this issue. After installing this update, the smb service will be restarted automatically.

Affected

libtalloc on CentOS 5

References

http://lists.centos.org/pipermail/centos-announce/2010-September/017004.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-3069

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

CentOS Security Advisory CESA-2009:1438 (kernel)
CentOS Security Advisory CESA-2009:0397 (firefox)
CentOS Security Advisory CESA-2009:0431 (kdegraphics)
CentOS Security Advisory CESA-2009:1162 (firefox)
CentOS Security Advisory CESA-2009:1289 (mysql)

CentOS Update for libtalloc CESA-2010:0698 centos5 i386

Take action and discover your vulnerabilities