Oval Definition:oval:com.redhat.rhsa:def:20120533
Revision Date:2012-04-30Version:634
Title:RHSA-2012:0533: samba and samba3x security update (Important)
Description:Samba is an open-source implementation of the Server Message Block (SMB) or Common Internet File System (CIFS) protocol, which allows PC-compatible machines to share files, printers, and other information.

  • A flaw was found in the way Samba handled certain Local Security Authority (LSA) Remote Procedure Calls (RPC). An authenticated user could use this flaw to issue an RPC call that would modify the privileges database on the Samba server, allowing them to steal the ownership of files and directories that are being shared by the Samba server, and create, delete, and modify user accounts, as well as other Samba server administration tasks. (CVE-2012-2111)

    Red Hat would like to thank the Samba project for reporting this issue. Upstream acknowledges Ivano Cristofolini as the original reporter.

    Users of Samba are advised to upgrade to these updated packages, which contain a backported patch to resolve this issue. After installing this update, the smb service will be restarted automatically.
  • Family:unixClass:patch
    Status:Reference(s):CVE-2012-2111
    CVE-2012-2111
    RHSA-2012:0533
    RHSA-2012:0533-01
    RHSA-2012:0533-01
    Platform(s):Red Hat Enterprise Linux 5
    Red Hat Enterprise Linux 6
    Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 6 is installed
  • AND
  • libsmbclient is earlier than 0:3.5.10-116.el6_2
  • AND libsmbclient is signed with Red Hat redhatrelease2 key
  • libsmbclient-devel is earlier than 0:3.5.10-116.el6_2
  • AND libsmbclient-devel is signed with Red Hat redhatrelease2 key
  • samba is earlier than 0:3.5.10-116.el6_2
  • AND samba is signed with Red Hat redhatrelease2 key
  • samba-client is earlier than 0:3.5.10-116.el6_2
  • AND samba-client is signed with Red Hat redhatrelease2 key
  • samba-common is earlier than 0:3.5.10-116.el6_2
  • AND samba-common is signed with Red Hat redhatrelease2 key
  • samba-doc is earlier than 0:3.5.10-116.el6_2
  • AND samba-doc is signed with Red Hat redhatrelease2 key
  • samba-domainjoin-gui is earlier than 0:3.5.10-116.el6_2
  • AND samba-domainjoin-gui is signed with Red Hat redhatrelease2 key
  • samba-swat is earlier than 0:3.5.10-116.el6_2
  • AND samba-swat is signed with Red Hat redhatrelease2 key
  • samba-winbind is earlier than 0:3.5.10-116.el6_2
  • AND samba-winbind is signed with Red Hat redhatrelease2 key
  • samba-winbind-clients is earlier than 0:3.5.10-116.el6_2
  • AND samba-winbind-clients is signed with Red Hat redhatrelease2 key
  • samba-winbind-devel is earlier than 0:3.5.10-116.el6_2
  • AND samba-winbind-devel is signed with Red Hat redhatrelease2 key
  • samba-winbind-krb5-locator is earlier than 0:3.5.10-116.el6_2
  • AND samba-winbind-krb5-locator is signed with Red Hat redhatrelease2 key
  • OR Package Information
  • Red Hat Enterprise Linux 5 is installed
  • AND
  • samba3x is earlier than 0:3.5.10-0.109.el5_8
  • AND samba3x is signed with Red Hat redhatrelease2 key
  • samba3x-client is earlier than 0:3.5.10-0.109.el5_8
  • AND samba3x-client is signed with Red Hat redhatrelease2 key
  • samba3x-common is earlier than 0:3.5.10-0.109.el5_8
  • AND samba3x-common is signed with Red Hat redhatrelease2 key
  • samba3x-doc is earlier than 0:3.5.10-0.109.el5_8
  • AND samba3x-doc is signed with Red Hat redhatrelease2 key
  • samba3x-domainjoin-gui is earlier than 0:3.5.10-0.109.el5_8
  • AND samba3x-domainjoin-gui is signed with Red Hat redhatrelease2 key
  • samba3x-swat is earlier than 0:3.5.10-0.109.el5_8
  • AND samba3x-swat is signed with Red Hat redhatrelease2 key
  • samba3x-winbind is earlier than 0:3.5.10-0.109.el5_8
  • AND samba3x-winbind is signed with Red Hat redhatrelease2 key
  • samba3x-winbind-devel is earlier than 0:3.5.10-0.109.el5_8
  • AND samba3x-winbind-devel is signed with Red Hat redhatrelease2 key
  • BACK