Your message dated Thu, 20 Dec 2007 19:54:12 +0000
with message-id <[EMAIL PROTECTED]>
and subject line Bug#451385: fixed in samba 3.0.24-6etch5
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message ---
Package: samba
Version: 3.0.24-6etch4
Severity: grave
Tags: security patch
Hi,
the following CVE (Common Vulnerabilities & Exposures) id was
published for samba.
CVE-2007-5398:
| Secunia Research has discovered a vulnerability in Samba, which can be
| exploited by malicious people to compromise a vulnerable system.
|
| The vulnerability is caused due to a boundary error within the
| "reply_netbios_packet()" function in nmbd/nmbd_packets.c when sending
| NetBIOS replies. This can be exploited to cause a stack-based buffer
| overflow by sending multiple specially crafted WINS "Name Registration"
| requests followed by a WINS "Name Query" request.
|
| Successful exploitation allows execution of arbitrary code, but
| requires that Samba is configured to run as a WINS server (the "wins
| support" option is enabled).
This information is from:
http://secunia.com/secunia_research/2007-90/advisory/
Mitre did not yet published it but it will be available later on [0].
Please also see: http://us1.samba.org/samba/security/CVE-2007-4572.html
and
http://us1.samba.org/samba/ftp/patches/security/samba-3.0.26a-CVE-2007-5398.patch
for the patch.
If you fix this vulnerability please also include the CVE id
in your changelog entry.
For further information:
[0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5398
Kind regards
Nico
--
Nico Golde - http://www.ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.
pgpo9RSWXB7Y4.pgp
Description: PGP signature
--- End Message ---
--- Begin Message ---
Source: samba
Source-Version: 3.0.24-6etch5
We believe that the bug you reported is fixed in the latest version of
samba, which is due to be installed in the Debian FTP archive:
libpam-smbpass_3.0.24-6etch5_i386.deb
to pool/main/s/samba/libpam-smbpass_3.0.24-6etch5_i386.deb
libsmbclient-dev_3.0.24-6etch5_i386.deb
to pool/main/s/samba/libsmbclient-dev_3.0.24-6etch5_i386.deb
libsmbclient_3.0.24-6etch5_i386.deb
to pool/main/s/samba/libsmbclient_3.0.24-6etch5_i386.deb
python-samba_3.0.24-6etch5_i386.deb
to pool/main/s/samba/python-samba_3.0.24-6etch5_i386.deb
samba-common_3.0.24-6etch5_i386.deb
to pool/main/s/samba/samba-common_3.0.24-6etch5_i386.deb
samba-dbg_3.0.24-6etch5_i386.deb
to pool/main/s/samba/samba-dbg_3.0.24-6etch5_i386.deb
samba-doc-pdf_3.0.24-6etch5_all.deb
to pool/main/s/samba/samba-doc-pdf_3.0.24-6etch5_all.deb
samba-doc_3.0.24-6etch5_all.deb
to pool/main/s/samba/samba-doc_3.0.24-6etch5_all.deb
samba_3.0.24-6etch5.diff.gz
to pool/main/s/samba/samba_3.0.24-6etch5.diff.gz
samba_3.0.24-6etch5.dsc
to pool/main/s/samba/samba_3.0.24-6etch5.dsc
samba_3.0.24-6etch5_i386.deb
to pool/main/s/samba/samba_3.0.24-6etch5_i386.deb
smbclient_3.0.24-6etch5_i386.deb
to pool/main/s/samba/smbclient_3.0.24-6etch5_i386.deb
smbfs_3.0.24-6etch5_i386.deb
to pool/main/s/samba/smbfs_3.0.24-6etch5_i386.deb
swat_3.0.24-6etch5_i386.deb
to pool/main/s/samba/swat_3.0.24-6etch5_i386.deb
winbind_3.0.24-6etch5_i386.deb
to pool/main/s/samba/winbind_3.0.24-6etch5_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Steve Langasek <[EMAIL PROTECTED]> (supplier of updated samba package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Tue, 13 Nov 2007 16:15:31 -0800
Source: samba
Binary: python-samba samba-doc-pdf samba-doc libsmbclient libpam-smbpass swat
winbind smbclient samba libsmbclient-dev samba-common samba-dbg smbfs
Architecture: source i386 all
Version: 3.0.24-6etch5
Distribution: stable-security
Urgency: high
Maintainer: Debian Samba Maintainers <[EMAIL PROTECTED]>
Changed-By: Steve Langasek <[EMAIL PROTECTED]>
Description:
libpam-smbpass - pluggable authentication module for SMB/CIFS password database
libsmbclient - shared library that allows applications to talk to SMB/CIFS
serve
libsmbclient-dev - libsmbclient static libraries and headers
python-samba - Python bindings that allow access to various aspects of Samba
samba - a LanManager-like file and printer server for Unix
samba-common - Samba common files used by both the server and the client
samba-dbg - Samba debugging symbols
samba-doc - Samba documentation
samba-doc-pdf - Samba documentation (PDF format)
smbclient - a LanManager-like simple client for Unix
smbfs - mount and umount commands for the smbfs (for kernels >= than 2.2.
swat - Samba Web Administration Tool
winbind - service to resolve user and group information from Windows NT ser
Closes: 451385
Changes:
samba (3.0.24-6etch5) stable-security; urgency=high
.
* Fix a remote code execution vulnerability when running nmbd as a
WINS server. (CVE-2007-5398, closes: #451385)
* Fix a buffer overflow in nmbd when running as a domain controller
during processing of GETDC logon server requests. (CVE-2007-4572)
Files:
c828613c5ad857f8abfe70c442237bc4 1425 net optional samba_3.0.24-6etch5.dsc
3bcd30cc8acbfb025d02933089f49ddd 217271 net optional
samba_3.0.24-6etch5.diff.gz
6d5592789c1da6de9d51fc9ec74ae68e 6913352 doc optional
samba-doc_3.0.24-6etch5_all.deb
3148c88a9882d413a9a047e428c31a04 6599004 doc optional
samba-doc-pdf_3.0.24-6etch5_all.deb
a824bc521eb49df058677378d3748fcd 3261844 net optional
samba_3.0.24-6etch5_i386.deb
0a6eacc53831356d8cc8421efcbf4c8a 2381196 net optional
samba-common_3.0.24-6etch5_i386.deb
1e70a317af80cd7660d75dcb8ca1003d 3880562 net optional
smbclient_3.0.24-6etch5_i386.deb
989021d9ba9a9849fcc1fb63d282f304 793372 net optional
swat_3.0.24-6etch5_i386.deb
025f6ad977aa1f514f250a22c7074d80 412836 otherosfs optional
smbfs_3.0.24-6etch5_i386.deb
0db54383aaad978d587e85740ab8d72d 418896 admin extra
libpam-smbpass_3.0.24-6etch5_i386.deb
a17275e0ca39c3eadc849262ca5230dd 757994 libs optional
libsmbclient_3.0.24-6etch5_i386.deb
07e7b19040dac6833cd42a6f27241542 112394 libdevel extra
libsmbclient-dev_3.0.24-6etch5_i386.deb
4db7e2c0b8c79e47e96c6e3e475ce47a 1865830 net optional
winbind_3.0.24-6etch5_i386.deb
8d1dfa7ef86b265682b92fa46896107f 5661690 python optional
python-samba_3.0.24-6etch5_i386.deb
0d2c9ba880a4a72edcbe06c4e841c1fb 11886540 devel extra
samba-dbg_3.0.24-6etch5_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFHPMOQKN6ufymYLloRAqB/AJ4vItqsS5vml4ikdQtA7ZCx/Xy+cgCfXcN7
lP+Regxxm0s+vOdtiSkUG6U=
=g4gw
-----END PGP SIGNATURE-----
--- End Message ---