SuSE Update For Samba OpenSUSE-SU-2012:0508-1 (samba) Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

Samba upgrade to version 3.6.3 fixes the following security issue: - PIDL based autogenerated code allows overwriting beyond of allocated array. Remove attackers could exploit that to execute arbitrary code as root (CVE-2012-1182, bso#8815, bnc#752797) Please see /usr/share/doc/packages/samba/WHATSNEW.txt from the samba-doc package or the package change log (rpm -q --changelog samba) for more details of the version update.

Affected

update on openSUSE 11.4

Severity

Classification

CVE CVE-2012-1182

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

SLES10: Security update for Linux kernel
SLES10: Security update for IBM Java 1.5.0
SLES10: Security update for CUPS
SLES10: Security update for curl
SLES10: Security update for Mozilla XULRunner

SuSE Update for samba openSUSE-SU-2012:0508-1 (samba)

Take action and discover your vulnerabilities