Oval Definition:oval:com.redhat.rhsa:def:20071114
Revision Date:2008-03-20Version:638
Title:RHSA-2007:1114: samba security and bug fix update (Critical)
Description:Samba is a suite of programs used by machines to share files, printers, and other information.

  • A stack buffer overflow flaw was found in the way Samba authenticates remote users. A remote unauthenticated user could trigger this flaw to cause the Samba server to crash, or execute arbitrary code with the permissions of the Samba server. (CVE-2007-6015)

    Red Hat would like to thank Alin Rad Pop of Secunia Research for responsibly disclosing this issue.

    This update also fixes a regression caused by the fix for CVE-2007-4572, which prevented some clients from being able to properly access shares.

    Users of Samba are advised to upgrade to these updated packages, which contain a backported patch to resolve these issues.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2007-6015
    RHSA-2007:1114
    RHSA-2007:1114-01
    RHSA-2007:1114-01
    Platform(s):Red Hat Enterprise Linux 3
    Red Hat Enterprise Linux 4
    Red Hat Enterprise Linux 5
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 3 is installed
  • AND
  • samba-swat is earlier than 0:3.0.9-1.3E.14.3
  • AND samba-swat is signed with Red Hat master key
  • samba-common is earlier than 0:3.0.9-1.3E.14.3
  • AND samba-common is signed with Red Hat master key
  • samba is earlier than 0:3.0.9-1.3E.14.3
  • AND samba is signed with Red Hat master key
  • samba-client is earlier than 0:3.0.9-1.3E.14.3
  • AND samba-client is signed with Red Hat master key
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND
  • samba-swat is earlier than 0:3.0.25b-1.el4_6.4
  • AND samba-swat is signed with Red Hat master key
  • samba-client is earlier than 0:3.0.25b-1.el4_6.4
  • AND samba-client is signed with Red Hat master key
  • samba-common is earlier than 0:3.0.25b-1.el4_6.4
  • AND samba-common is signed with Red Hat master key
  • samba is earlier than 0:3.0.25b-1.el4_6.4
  • AND samba is signed with Red Hat master key
  • OR Package Information
  • Red Hat Enterprise Linux 5 is installed
  • AND
  • samba-common is earlier than 0:3.0.25b-1.el5_1.4
  • AND samba-common is signed with Red Hat redhatrelease key
  • samba-swat is earlier than 0:3.0.25b-1.el5_1.4
  • AND samba-swat is signed with Red Hat redhatrelease key
  • samba-client is earlier than 0:3.0.25b-1.el5_1.4
  • AND samba-client is signed with Red Hat redhatrelease key
  • samba is earlier than 0:3.0.25b-1.el5_1.4
  • AND samba is signed with Red Hat redhatrelease key
    • Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND
  • samba is earlier than 0:3.0.25b-1.el4_6.4
  • AND samba is signed with Red Hat redhatrelease2 key
  • samba-client is earlier than 0:3.0.25b-1.el4_6.4
  • AND samba-client is signed with Red Hat redhatrelease2 key
  • samba-common is earlier than 0:3.0.25b-1.el4_6.4
  • AND samba-common is signed with Red Hat redhatrelease2 key
  • samba-swat is earlier than 0:3.0.25b-1.el4_6.4
  • AND samba-swat is signed with Red Hat redhatrelease2 key
  • OR Package Information
  • Red Hat Enterprise Linux 5 is installed
  • AND
  • samba is earlier than 0:3.0.25b-1.el5_1.4
  • AND samba is signed with Red Hat redhatrelease2 key
  • samba-client is earlier than 0:3.0.25b-1.el5_1.4
  • AND samba-client is signed with Red Hat redhatrelease2 key
  • samba-common is earlier than 0:3.0.25b-1.el5_1.4
  • AND samba-common is signed with Red Hat redhatrelease2 key
  • samba-swat is earlier than 0:3.0.25b-1.el5_1.4
  • AND samba-swat is signed with Red Hat redhatrelease2 key
    • Definition Synopsis
  • Release Information
  • Red Hat Enterprise Linux 3 is installed
  • AND
  • samba is earlier than 0:3.0.9-1.3E.14.3
  • AND samba is signed with Red Hat master key
  • samba-client is earlier than 0:3.0.9-1.3E.14.3
  • AND samba-client is signed with Red Hat master key
  • samba-common is earlier than 0:3.0.9-1.3E.14.3
  • AND samba-common is signed with Red Hat master key
  • samba-swat is earlier than 0:3.0.9-1.3E.14.3
  • AND samba-swat is signed with Red Hat master key
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND
  • samba is earlier than 0:3.0.25b-1.el4_6.4
  • AND samba is signed with Red Hat master key
  • samba-client is earlier than 0:3.0.25b-1.el4_6.4
  • AND samba-client is signed with Red Hat master key
  • samba-common is earlier than 0:3.0.25b-1.el4_6.4
  • AND samba-common is signed with Red Hat master key
  • samba-swat is earlier than 0:3.0.25b-1.el4_6.4
  • AND samba-swat is signed with Red Hat master key
  • OR Package Information
  • Red Hat Enterprise Linux 5 is installed
  • AND
  • samba is earlier than 0:3.0.25b-1.el5_1.4
  • AND samba is signed with Red Hat redhatrelease key
  • samba-client is earlier than 0:3.0.25b-1.el5_1.4
  • AND samba-client is signed with Red Hat redhatrelease key
  • samba-common is earlier than 0:3.0.25b-1.el5_1.4
  • AND samba-common is signed with Red Hat redhatrelease key
  • samba-swat is earlier than 0:3.0.25b-1.el5_1.4
  • AND samba-swat is signed with Red Hat redhatrelease key
    • BACK