Oval Definition:oval:org.mitre.oval:def:23186
Revision Date:2014-05-26Version:15
Title:ELSA-2012:0533: samba and samba3x security update (Important)
Description:The (1) CreateAccount, (2) OpenAccount, (3) AddAccountRights, and (4) RemoveAccountRights LSA RPC procedures in smbd in Samba 3.4.x before 3.4.17, 3.5.x before 3.5.15, and 3.6.x before 3.6.5 do not properly restrict modifications to the privileges database, which allows remote authenticated users to obtain the "take ownership" privilege via an LSA connection.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2012-2111
ELSA-2012:0533-01
Platform(s):Oracle Linux 5
Oracle Linux 6
Product(s):samba
samba3x
Definition Synopsis
  • rpm test
  • Oracle Linux 5.x
  • AND rpm test
  • samba3x-doc is earlier than 0:3.5.10-0.109.el5_8
  • OR samba3x-winbind is earlier than 0:3.5.10-0.109.el5_8
  • OR samba3x-winbind-devel is earlier than 0:3.5.10-0.109.el5_8
  • OR samba3x is earlier than 0:3.5.10-0.109.el5_8
  • OR samba3x-client is earlier than 0:3.5.10-0.109.el5_8
  • OR samba3x-domainjoin-gui is earlier than 0:3.5.10-0.109.el5_8
  • OR samba3x-swat is earlier than 0:3.5.10-0.109.el5_8
  • OR samba3x-common is earlier than 0:3.5.10-0.109.el5_8
  • OR rpm test
  • Oracle Linux 6.x
  • AND rpm test
  • samba-client is earlier than 0:3.5.10-116.el6_2
  • OR samba-domainjoin-gui is earlier than 0:3.5.10-116.el6_2
  • OR samba is earlier than 0:3.5.10-116.el6_2
  • OR samba-common is earlier than 0:3.5.10-116.el6_2
  • OR libsmbclient-devel is earlier than 0:3.5.10-116.el6_2
  • OR samba-doc is earlier than 0:3.5.10-116.el6_2
  • OR samba-winbind is earlier than 0:3.5.10-116.el6_2
  • OR samba-winbind-devel is earlier than 0:3.5.10-116.el6_2
  • OR samba-winbind-clients is earlier than 0:3.5.10-116.el6_2
  • OR samba-swat is earlier than 0:3.5.10-116.el6_2
  • OR libsmbclient is earlier than 0:3.5.10-116.el6_2
  • OR samba-winbind-krb5-locator is earlier than 0:3.5.10-116.el6_2
    • BACK