Oval Definition:oval:org.mitre.oval:def:21003
Revision Date:2014-02-17Version:11
Title:RHSA-2013:0506: samba4 security, bug fix and enhancement update (Moderate)
Description:The RPC code generator in Samba 3.x before 3.4.16, 3.5.x before 3.5.14, and 3.6.x before 3.6.4 does not implement validation of an array length in a manner consistent with validation of array memory allocation, which allows remote attackers to execute arbitrary code via a crafted RPC call.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CESA-2013:0506
CVE-2012-1182
RHSA-2013:0506-02
Platform(s):CentOS Linux 6
Red Hat Enterprise Linux 6
Product(s):samba4
Definition Synopsis
  • Redhat 6 or Centos 6 release
  • The operating system installed on the system is Red Hat Enterprise Linux 6
  • OR The operating system installed on the system is CentOS Linux 6.x
  • AND Packages section
  • samba4-winbind is earlier than 0:4.0.0-55.el6.rc4
  • OR samba4-python is earlier than 0:4.0.0-55.el6.rc4
  • OR samba4-winbind-krb5-locator is earlier than 0:4.0.0-55.el6.rc4
  • OR samba4-pidl is earlier than 0:4.0.0-55.el6.rc4
  • OR samba4-dc is earlier than 0:4.0.0-55.el6.rc4
  • OR samba4-winbind-clients is earlier than 0:4.0.0-55.el6.rc4
  • OR samba4-swat is earlier than 0:4.0.0-55.el6.rc4
  • OR samba4-dc-libs is earlier than 0:4.0.0-55.el6.rc4
  • OR samba4-client is earlier than 0:4.0.0-55.el6.rc4
  • OR samba4-libs is earlier than 0:4.0.0-55.el6.rc4
  • OR samba4-devel is earlier than 0:4.0.0-55.el6.rc4
  • OR samba4-common is earlier than 0:4.0.0-55.el6.rc4
  • OR samba4 is earlier than 0:4.0.0-55.el6.rc4
  • OR samba4-test is earlier than 0:4.0.0-55.el6.rc4
    • BACK