Your message dated Thu, 20 Dec 2007 19:54:12 +0000
with message-id <[EMAIL PROTECTED]>
and subject line Bug#451385: fixed in samba 3.0.24-6etch5
has caused the attached Bug report to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere.  Please contact me immediately.)

Debian bug tracking system administrator
(administrator, Debian Bugs database)

--- Begin Message ---
Package: samba
Version: 3.0.24-6etch4
Severity: grave
Tags: security patch

Hi,
the following CVE (Common Vulnerabilities & Exposures) id was
published for samba.

CVE-2007-5398:
| Secunia Research has discovered a vulnerability in Samba, which can be
| exploited by malicious people to compromise a vulnerable system.
| 
| The vulnerability is caused due to a boundary error within the 
| "reply_netbios_packet()" function in nmbd/nmbd_packets.c when sending
| NetBIOS replies. This can be exploited to cause a stack-based buffer
| overflow by sending multiple specially crafted WINS "Name Registration"
| requests followed by a WINS "Name Query" request.
| 
| Successful exploitation allows execution of arbitrary code, but
| requires that Samba is configured to run as a WINS server (the "wins
| support" option is enabled).

This information is from:
http://secunia.com/secunia_research/2007-90/advisory/

Mitre did not yet published it but it will be available later on [0].
Please also see: http://us1.samba.org/samba/security/CVE-2007-4572.html
and 
http://us1.samba.org/samba/ftp/patches/security/samba-3.0.26a-CVE-2007-5398.patch
for the patch.

If you fix this vulnerability please also include the CVE id
in your changelog entry.

For further information:
[0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5398

Kind regards
Nico

-- 
Nico Golde - http://www.ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.

Attachment: pgpo9RSWXB7Y4.pgp
Description: PGP signature


--- End Message ---
--- Begin Message ---
Source: samba
Source-Version: 3.0.24-6etch5

We believe that the bug you reported is fixed in the latest version of
samba, which is due to be installed in the Debian FTP archive:

libpam-smbpass_3.0.24-6etch5_i386.deb
  to pool/main/s/samba/libpam-smbpass_3.0.24-6etch5_i386.deb
libsmbclient-dev_3.0.24-6etch5_i386.deb
  to pool/main/s/samba/libsmbclient-dev_3.0.24-6etch5_i386.deb
libsmbclient_3.0.24-6etch5_i386.deb
  to pool/main/s/samba/libsmbclient_3.0.24-6etch5_i386.deb
python-samba_3.0.24-6etch5_i386.deb
  to pool/main/s/samba/python-samba_3.0.24-6etch5_i386.deb
samba-common_3.0.24-6etch5_i386.deb
  to pool/main/s/samba/samba-common_3.0.24-6etch5_i386.deb
samba-dbg_3.0.24-6etch5_i386.deb
  to pool/main/s/samba/samba-dbg_3.0.24-6etch5_i386.deb
samba-doc-pdf_3.0.24-6etch5_all.deb
  to pool/main/s/samba/samba-doc-pdf_3.0.24-6etch5_all.deb
samba-doc_3.0.24-6etch5_all.deb
  to pool/main/s/samba/samba-doc_3.0.24-6etch5_all.deb
samba_3.0.24-6etch5.diff.gz
  to pool/main/s/samba/samba_3.0.24-6etch5.diff.gz
samba_3.0.24-6etch5.dsc
  to pool/main/s/samba/samba_3.0.24-6etch5.dsc
samba_3.0.24-6etch5_i386.deb
  to pool/main/s/samba/samba_3.0.24-6etch5_i386.deb
smbclient_3.0.24-6etch5_i386.deb
  to pool/main/s/samba/smbclient_3.0.24-6etch5_i386.deb
smbfs_3.0.24-6etch5_i386.deb
  to pool/main/s/samba/smbfs_3.0.24-6etch5_i386.deb
swat_3.0.24-6etch5_i386.deb
  to pool/main/s/samba/swat_3.0.24-6etch5_i386.deb
winbind_3.0.24-6etch5_i386.deb
  to pool/main/s/samba/winbind_3.0.24-6etch5_i386.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Steve Langasek <[EMAIL PROTECTED]> (supplier of updated samba package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Tue, 13 Nov 2007 16:15:31 -0800
Source: samba
Binary: python-samba samba-doc-pdf samba-doc libsmbclient libpam-smbpass swat 
winbind smbclient samba libsmbclient-dev samba-common samba-dbg smbfs
Architecture: source i386 all
Version: 3.0.24-6etch5
Distribution: stable-security
Urgency: high
Maintainer: Debian Samba Maintainers <[EMAIL PROTECTED]>
Changed-By: Steve Langasek <[EMAIL PROTECTED]>
Description: 
 libpam-smbpass - pluggable authentication module for SMB/CIFS password database
 libsmbclient - shared library that allows applications to talk to SMB/CIFS 
serve
 libsmbclient-dev - libsmbclient static libraries and headers
 python-samba - Python bindings that allow access to various aspects of Samba
 samba      - a LanManager-like file and printer server for Unix
 samba-common - Samba common files used by both the server and the client
 samba-dbg  - Samba debugging symbols
 samba-doc  - Samba documentation
 samba-doc-pdf - Samba documentation (PDF format)
 smbclient  - a LanManager-like simple client for Unix
 smbfs      - mount and umount commands for the smbfs (for kernels >= than 2.2.
 swat       - Samba Web Administration Tool
 winbind    - service to resolve user and group information from Windows NT ser
Closes: 451385
Changes: 
 samba (3.0.24-6etch5) stable-security; urgency=high
 .
   * Fix a remote code execution vulnerability when running nmbd as a
     WINS server. (CVE-2007-5398, closes: #451385)
   * Fix a buffer overflow in nmbd when running as a domain controller
     during processing of GETDC logon server requests. (CVE-2007-4572)
Files: 
 c828613c5ad857f8abfe70c442237bc4 1425 net optional samba_3.0.24-6etch5.dsc
 3bcd30cc8acbfb025d02933089f49ddd 217271 net optional 
samba_3.0.24-6etch5.diff.gz
 6d5592789c1da6de9d51fc9ec74ae68e 6913352 doc optional 
samba-doc_3.0.24-6etch5_all.deb
 3148c88a9882d413a9a047e428c31a04 6599004 doc optional 
samba-doc-pdf_3.0.24-6etch5_all.deb
 a824bc521eb49df058677378d3748fcd 3261844 net optional 
samba_3.0.24-6etch5_i386.deb
 0a6eacc53831356d8cc8421efcbf4c8a 2381196 net optional 
samba-common_3.0.24-6etch5_i386.deb
 1e70a317af80cd7660d75dcb8ca1003d 3880562 net optional 
smbclient_3.0.24-6etch5_i386.deb
 989021d9ba9a9849fcc1fb63d282f304 793372 net optional 
swat_3.0.24-6etch5_i386.deb
 025f6ad977aa1f514f250a22c7074d80 412836 otherosfs optional 
smbfs_3.0.24-6etch5_i386.deb
 0db54383aaad978d587e85740ab8d72d 418896 admin extra 
libpam-smbpass_3.0.24-6etch5_i386.deb
 a17275e0ca39c3eadc849262ca5230dd 757994 libs optional 
libsmbclient_3.0.24-6etch5_i386.deb
 07e7b19040dac6833cd42a6f27241542 112394 libdevel extra 
libsmbclient-dev_3.0.24-6etch5_i386.deb
 4db7e2c0b8c79e47e96c6e3e475ce47a 1865830 net optional 
winbind_3.0.24-6etch5_i386.deb
 8d1dfa7ef86b265682b92fa46896107f 5661690 python optional 
python-samba_3.0.24-6etch5_i386.deb
 0d2c9ba880a4a72edcbe06c4e841c1fb 11886540 devel extra 
samba-dbg_3.0.24-6etch5_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFHPMOQKN6ufymYLloRAqB/AJ4vItqsS5vml4ikdQtA7ZCx/Xy+cgCfXcN7
lP+Regxxm0s+vOdtiSkUG6U=
=g4gw
-----END PGP SIGNATURE-----



--- End Message ---

Reply via email to