Security Advisory samba security update

Advisory: RHSA-2005:020-04
Type: Security Advisory
Severity: Important
Issued on: 2005-01-05
Last updated on: 2005-01-05
Affected Products: Red Hat Enterprise Linux AS (v. 2.1)
Red Hat Enterprise Linux ES (v. 2.1)
Red Hat Enterprise Linux WS (v. 2.1)
Red Hat Linux Advanced Workstation 2.1 for the Itanium Processor
OVAL: N/A
CVEs (cve.mitre.org): CVE-2004-1154

Details

Updated samba packages that fix an integer overflow vulnerability are now
available for Red Hat Enterprise Linux 2.1.

Samba provides file and printer sharing services to SMB/CIFS clients.

Greg MacManus of iDEFENSE Labs discovered an integer overflow bug in Samba
versions prior to 3.0.10. An authenticated remote user could exploit this
bug, which could lead to arbitrary code execution on the Samba server. The
Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned
the name CAN-2004-1154 to this issue.

Please note that the patch included in RHSA-2004:681 was incomplete and may
not have fixed CAN-2004-1154. These packages contain a complete fix for
CAN-2004-1154 along with some additional checks to mitigate similar issues
in the future.

Users of Samba should upgrade to these updated packages, which contain
backported security patches, and are not vulnerable to these issues.


Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied. Use Red Hat
Network to download and update your packages. To launch the Red Hat
Update Agent, use the following command:

up2date

For information on how to install packages manually, refer to the
following Web page for the System Administration or Customization
guide specific to your system:

http://www.redhat.com/docs/manuals/enterprise/

Updated packages

Red Hat Enterprise Linux AS (v. 2.1)
SRPMS:
samba-2.2.12-1.21as.4.src.rpm     768fec75632b892c1579f64499077778
 
IA-32:
samba-2.2.12-1.21as.4.i386.rpm
File outdated by:  RHSA-2008:0288		     2ec84b7b858fac431c40ac6fdf9d0c95
samba-client-2.2.12-1.21as.4.i386.rpm
File outdated by:  RHSA-2008:0288		     4821ef92f29f78edfd6b8205508ad46e
samba-common-2.2.12-1.21as.4.i386.rpm
File outdated by:  RHSA-2008:0288		     ca5d258eb32db22d3f8a9c695060435b
samba-swat-2.2.12-1.21as.4.i386.rpm
File outdated by:  RHSA-2008:0288		     ade253e1a068c6387ed4b9fbea9a9d23
 
IA-64:
samba-2.2.12-1.21as.4.ia64.rpm
File outdated by:  RHSA-2008:0288		     52b06022e36a56f5e8371ee99aa27f37
samba-client-2.2.12-1.21as.4.ia64.rpm
File outdated by:  RHSA-2008:0288		     67544e668799e5a1af5cf386995d6893
samba-common-2.2.12-1.21as.4.ia64.rpm
File outdated by:  RHSA-2008:0288		     32ffc6b7077b876edcd480168263ac4d
samba-swat-2.2.12-1.21as.4.ia64.rpm
File outdated by:  RHSA-2008:0288		     d3969f4263c42a81f975fe87b89581f9
 
Red Hat Enterprise Linux ES (v. 2.1)
SRPMS:
samba-2.2.12-1.21as.4.src.rpm     768fec75632b892c1579f64499077778
 
IA-32:
samba-2.2.12-1.21as.4.i386.rpm
File outdated by:  RHSA-2008:0288		     2ec84b7b858fac431c40ac6fdf9d0c95
samba-client-2.2.12-1.21as.4.i386.rpm
File outdated by:  RHSA-2008:0288		     4821ef92f29f78edfd6b8205508ad46e
samba-common-2.2.12-1.21as.4.i386.rpm
File outdated by:  RHSA-2008:0288		     ca5d258eb32db22d3f8a9c695060435b
samba-swat-2.2.12-1.21as.4.i386.rpm
File outdated by:  RHSA-2008:0288		     ade253e1a068c6387ed4b9fbea9a9d23
 
Red Hat Enterprise Linux WS (v. 2.1)
SRPMS:
samba-2.2.12-1.21as.4.src.rpm     768fec75632b892c1579f64499077778
 
IA-32:
samba-2.2.12-1.21as.4.i386.rpm
File outdated by:  RHSA-2008:0288		     2ec84b7b858fac431c40ac6fdf9d0c95
samba-client-2.2.12-1.21as.4.i386.rpm
File outdated by:  RHSA-2008:0288		     4821ef92f29f78edfd6b8205508ad46e
samba-common-2.2.12-1.21as.4.i386.rpm
File outdated by:  RHSA-2008:0288		     ca5d258eb32db22d3f8a9c695060435b
samba-swat-2.2.12-1.21as.4.i386.rpm
File outdated by:  RHSA-2008:0288		     ade253e1a068c6387ed4b9fbea9a9d23
 
Red Hat Linux Advanced Workstation 2.1 for the Itanium Processor
SRPMS:
samba-2.2.12-1.21as.4.src.rpm     768fec75632b892c1579f64499077778
 
IA-64:
samba-2.2.12-1.21as.4.ia64.rpm
File outdated by:  RHSA-2008:0288		     52b06022e36a56f5e8371ee99aa27f37
samba-client-2.2.12-1.21as.4.ia64.rpm
File outdated by:  RHSA-2008:0288		     67544e668799e5a1af5cf386995d6893
samba-common-2.2.12-1.21as.4.ia64.rpm
File outdated by:  RHSA-2008:0288		     32ffc6b7077b876edcd480168263ac4d
samba-swat-2.2.12-1.21as.4.ia64.rpm
File outdated by:  RHSA-2008:0288		     d3969f4263c42a81f975fe87b89581f9
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

142472 - CAN-2004-1154 Samba authenticated remote root


References

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1154

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/