Skip to navigation

Security Advisory Moderate: samba3x security and bug fix update

Advisory: RHSA-2013:1310-1
Type: Security Advisory
Severity: Moderate
Issued on: 2013-09-30
Last updated on: 2013-09-30
Affected Products: RHEL Desktop Workstation (v. 5 client)
Red Hat Enterprise Linux (v. 5 server)
Red Hat Enterprise Linux Desktop (v. 5 client)
CVEs (cve.mitre.org): CVE-2013-0213
CVE-2013-0214
CVE-2013-4124

Details

Updated samba3x packages that fix multiple security issues and several bugs
are now available for Red Hat Enterprise Linux 5.

The Red Hat Security Response Team has rated this update as having moderate
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.

Samba is an open-source implementation of the Server Message Block (SMB) or
Common Internet File System (CIFS) protocol, which allows PC-compatible
machines to share files, printers, and other information.

It was discovered that the Samba Web Administration Tool (SWAT) did not
protect against being opened in a web page frame. A remote attacker could
possibly use this flaw to conduct a clickjacking attack against SWAT users
or users with an active SWAT session. (CVE-2013-0213)

A flaw was found in the Cross-Site Request Forgery (CSRF) protection
mechanism implemented in SWAT. An attacker with the knowledge of a victim's
password could use this flaw to bypass CSRF protections and conduct a CSRF
attack against the victim SWAT user. (CVE-2013-0214)

An integer overflow flaw was found in the way Samba handled an Extended
Attribute (EA) list provided by a client. A malicious client could send a
specially crafted EA list that triggered an overflow, causing the server to
loop and reprocess the list using an excessive amount of memory.
(CVE-2013-4124)

Note: This issue did not affect the default configuration of the Samba
server.

Red Hat would like to thank the Samba project for reporting CVE-2013-0213
and CVE-2013-0214. Upstream acknowledges Jann Horn as the original reporter
of CVE-2013-0213 and CVE-2013-0214.

These updated samba3x packages also include numerous bug fixes. Space
precludes documenting all of these changes in this advisory. Users are
directed to the Red Hat Enterprise Linux 5.10 Technical Notes, linked to in
the References, for information on the most significant of these changes.

All samba3x users are advised to upgrade to these updated packages, which
contain backported patches to correct these issues. After installing this
update, the smb service will be restarted automatically.


Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/site/articles/11258

Updated packages

RHEL Desktop Workstation (v. 5 client)

SRPMS:
samba3x-3.6.6-0.136.el5.src.rpm
File outdated by:  RHSA-2014:0330
    MD5: 0cbb26356c2377496a74de7013d181a8
SHA-256: d29fed32861f40b046e9c163a3db26dd540241782c895aef88e15ecd82958f0a
 
IA-32:
samba3x-debuginfo-3.6.6-0.136.el5.i386.rpm
File outdated by:  RHSA-2014:0330
    MD5: 3271b7a00d326784b26522f62631fe2f
SHA-256: f8c88ca3461abbb88aaa91f68bb14d6107efe38ed46bec65e331e7e24fa8f20b
samba3x-winbind-devel-3.6.6-0.136.el5.i386.rpm
File outdated by:  RHSA-2014:0330
    MD5: 0966bca25162957dc6a8da223ef545dc
SHA-256: 9461a5c9b84e57657ed684f591ea0a8c198704182f7e648ccaaea5fefdcf639a
 
x86_64:
samba3x-debuginfo-3.6.6-0.136.el5.i386.rpm
File outdated by:  RHSA-2014:0330
    MD5: 3271b7a00d326784b26522f62631fe2f
SHA-256: f8c88ca3461abbb88aaa91f68bb14d6107efe38ed46bec65e331e7e24fa8f20b
samba3x-debuginfo-3.6.6-0.136.el5.x86_64.rpm
File outdated by:  RHSA-2014:0330
    MD5: 8fcf92ade0e0c7b3a8249b1e5e086b1a
SHA-256: e5cdfb4727d80f1f286a53516700dc3a48e93e3c982dc9c01c845bdf41d70fe4
samba3x-winbind-devel-3.6.6-0.136.el5.i386.rpm
File outdated by:  RHSA-2014:0330
    MD5: 0966bca25162957dc6a8da223ef545dc
SHA-256: 9461a5c9b84e57657ed684f591ea0a8c198704182f7e648ccaaea5fefdcf639a
samba3x-winbind-devel-3.6.6-0.136.el5.x86_64.rpm
File outdated by:  RHSA-2014:0330
    MD5: 3a3b947e17a149e23ec693d771af36a6
SHA-256: 2a6f0308244938545bfc4b354a25257ef6d4f445540abdd66f63e41d867f005d
 
Red Hat Enterprise Linux (v. 5 server)

SRPMS:
samba3x-3.6.6-0.136.el5.src.rpm
File outdated by:  RHSA-2014:0330
    MD5: 0cbb26356c2377496a74de7013d181a8
SHA-256: d29fed32861f40b046e9c163a3db26dd540241782c895aef88e15ecd82958f0a
 
IA-32:
samba3x-3.6.6-0.136.el5.i386.rpm
File outdated by:  RHSA-2014:0330
    MD5: b78fbb07e0b382d0cae0ca645ca97459
SHA-256: 1a6dde8eedfa751cc5114a2637fb6bd046f76f85969a4ab41e1d1ff3f331df31
samba3x-client-3.6.6-0.136.el5.i386.rpm
File outdated by:  RHSA-2014:0330
    MD5: 08affdf994c8a00c1d07affa902130ce
SHA-256: 431cfa19b81e892398fbb78882c48ec622f54b90c64269dcb219b15f8c375c2a
samba3x-common-3.6.6-0.136.el5.i386.rpm
File outdated by:  RHSA-2014:0330
    MD5: 63dc3592b16e2a87ba0c8d28fc473c56
SHA-256: 8d1e34525b0dd40b6cf8c82f0133c9a35d689fc09a25f134083735fb5e278395
samba3x-debuginfo-3.6.6-0.136.el5.i386.rpm
File outdated by:  RHSA-2014:0330
    MD5: 3271b7a00d326784b26522f62631fe2f
SHA-256: f8c88ca3461abbb88aaa91f68bb14d6107efe38ed46bec65e331e7e24fa8f20b
samba3x-doc-3.6.6-0.136.el5.i386.rpm
File outdated by:  RHSA-2014:0330
    MD5: 3922e6a98ed1e8d0655a5a502a407e8a
SHA-256: 19e4dde388f0767b0a43031e0430d9db9f30208262722afd383c261381ad63e8
samba3x-domainjoin-gui-3.6.6-0.136.el5.i386.rpm
File outdated by:  RHSA-2014:0330
    MD5: 3f1b430fc74801e4905d6994b69c3b2e
SHA-256: 642c6390ba0e561376340e27e62b9518a1ea34da01891bc49f0c98a1d66b740a
samba3x-swat-3.6.6-0.136.el5.i386.rpm
File outdated by:  RHSA-2014:0330
    MD5: 1c9bf9226838913200368941d4b73823
SHA-256: b40b92edf86037f33461e5e020c60165f62675bfa8129dcb0ddd33e67e23c7e9
samba3x-winbind-3.6.6-0.136.el5.i386.rpm
File outdated by:  RHSA-2014:0330
    MD5: 3e783baf989dbe196a8857eb8c3b10fd
SHA-256: f9ee0b15c335e52ac8eb3d21fc6134bfe1ffef8a63b87e7828e1ca9c21ead056
samba3x-winbind-devel-3.6.6-0.136.el5.i386.rpm
File outdated by:  RHSA-2014:0330
    MD5: 0966bca25162957dc6a8da223ef545dc
SHA-256: 9461a5c9b84e57657ed684f591ea0a8c198704182f7e648ccaaea5fefdcf639a
 
IA-64:
samba3x-3.6.6-0.136.el5.ia64.rpm
File outdated by:  RHSA-2014:0330
    MD5: 88073d98e5a6df865b292f2e6ce3e0d8
SHA-256: 12b02aae754c5bd3935ccba013279ace1b9bebd6f547cc20e536807ad7b08129
samba3x-client-3.6.6-0.136.el5.ia64.rpm
File outdated by:  RHSA-2014:0330
    MD5: 22aa4478e143064730aeae658cc89845
SHA-256: 6dba785e8c4e90b22ec26b6730def7dff2d0462e66fd9cf10f64e98fe595cda5
samba3x-common-3.6.6-0.136.el5.ia64.rpm
File outdated by:  RHSA-2014:0330
    MD5: 7cc1a4412f54a2f2877d0dfa40aab825
SHA-256: ef9f915dcfd400ad91c4a1cc507b532309cc96380ce04e358ceb02141a22d299
samba3x-debuginfo-3.6.6-0.136.el5.ia64.rpm
File outdated by:  RHSA-2014:0330
    MD5: 22e3a8900fa7bca940aa4a174284a813
SHA-256: 0166e974ce377aae41b07e3aa4eed1a7ca281ab344205ba8699a68af53f31411
samba3x-doc-3.6.6-0.136.el5.ia64.rpm
File outdated by:  RHSA-2014:0330
    MD5: b9ceb26f0c2f01906ac821af096c0003
SHA-256: a1ca81f1e371ad3a6857e3681d17525672f017db34712e517e7191056b0c0e48
samba3x-domainjoin-gui-3.6.6-0.136.el5.ia64.rpm
File outdated by:  RHSA-2014:0330
    MD5: d7d192fc40cd48d3fe51f946e5f7251a
SHA-256: 8412a84f4f960d16206ea3e5851625ba1d5dac08cf7bcf4032cb4e5e050edc40
samba3x-swat-3.6.6-0.136.el5.ia64.rpm
File outdated by:  RHSA-2014:0330
    MD5: c29ca595f0f3f359fa0a3a84df71fd9f
SHA-256: 8cdcaca3b2ede667fd27503bc7417b9f0fdd21be61502c81685642542707e52d
samba3x-winbind-3.6.6-0.136.el5.ia64.rpm
File outdated by:  RHSA-2014:0330
    MD5: cfa325ae069b9dff466852f81668b9d6
SHA-256: ab3faffea4803293983581da667b84fc43872c7484ba5d331c01400d07439547
samba3x-winbind-devel-3.6.6-0.136.el5.ia64.rpm
File outdated by:  RHSA-2014:0330
    MD5: 7c969997737b1cc2e6979d83d9e8ffa8
SHA-256: 9ef39d0ef838cfece0ff6da38b0b03a04cfa36134a989be449384dbb05b38bed
 
PPC:
samba3x-3.6.6-0.136.el5.ppc.rpm
File outdated by:  RHSA-2014:0330
    MD5: 56e84d01f5fa370ad80341334be89374
SHA-256: 308e41667b71b1222ea4a685b0e37ea66a61789074826512c664024f6a01a9e6
samba3x-client-3.6.6-0.136.el5.ppc.rpm
File outdated by:  RHSA-2014:0330
    MD5: 5c0de6ea6a2e0c318cf323d5f02fc77a
SHA-256: fec7885978132fd54b856f354c9e54e47d65d222c926ab867d5c1dd3ae8f2769
samba3x-common-3.6.6-0.136.el5.ppc.rpm
File outdated by:  RHSA-2014:0330
    MD5: d344ed404fa188b29ecd7a905d67a702
SHA-256: 750f66562406de89d2c943f8f26f8040406b57bb707c5e50c5be704b86c73974
samba3x-debuginfo-3.6.6-0.136.el5.ppc.rpm
File outdated by:  RHSA-2014:0330
    MD5: 858d768105c303c3e76b295601a95010
SHA-256: 3a686fd4325436c42dbb9866f776c824cf5decb72ade89cea07ad21d414d88da
samba3x-debuginfo-3.6.6-0.136.el5.ppc64.rpm
File outdated by:  RHSA-2014:0330
    MD5: 17ac3cc20a6804936a63356b4ed46e87
SHA-256: ea0365723e2393a3ac5db0d15e813ace8e6a707b68f90ba7fca9998dd4853536
samba3x-doc-3.6.6-0.136.el5.ppc.rpm
File outdated by:  RHSA-2014:0330
    MD5: 3712646c8645b661ca56e52e0634b5b0
SHA-256: 0cc348a1725eb7fb6d27e22505b11e1f41304512e41e5478fd79089caf413859
samba3x-domainjoin-gui-3.6.6-0.136.el5.ppc.rpm
File outdated by:  RHSA-2014:0330
    MD5: 4a659c67314145d71f9031fed1177a38
SHA-256: 9808129581cc03de7565e323cb81d021109e7c8d30f6699c1f9ef612e84d115c
samba3x-swat-3.6.6-0.136.el5.ppc.rpm
File outdated by:  RHSA-2014:0330
    MD5: 35828c840afacddbe02f9d8bc9057e58
SHA-256: 0f5a4f132be78743e7c208a1cc5c3b209729454befef4dd8654f9c7cb75c005a
samba3x-winbind-3.6.6-0.136.el5.ppc.rpm
File outdated by:  RHSA-2014:0330
    MD5: 42adafe32bf67597de1922e94438cbe7
SHA-256: 10bda169dac076481e9e75943fb53796e011f54ffcfc3789c47b046b801b011b
samba3x-winbind-3.6.6-0.136.el5.ppc64.rpm
File outdated by:  RHSA-2014:0330
    MD5: 4558d9ae343d0d629c9f90c3e6c76e8a
SHA-256: 75bae70673d6d4fd0d6f171e214d01217357f9af79daaffd0f41a9ee1cdbeb9d
samba3x-winbind-devel-3.6.6-0.136.el5.ppc.rpm
File outdated by:  RHSA-2014:0330
    MD5: b21aab461e0aaa17aaf6d90328914f44
SHA-256: 1aa36e4cb76bf45e58a0bf5172fda5ac49893ca603ed9e5b1fab196cb5428c63
samba3x-winbind-devel-3.6.6-0.136.el5.ppc64.rpm
File outdated by:  RHSA-2014:0330
    MD5: db6424f187bac7905b92e197f9c8b717
SHA-256: 9ed9490d949d4d5cf0236da9e082c355634e8df1711914913c0afe67b276fbc7
 
s390x:
samba3x-3.6.6-0.136.el5.s390x.rpm
File outdated by:  RHSA-2014:0330
    MD5: 4c74fd8ff31ebbdac7ee93e1dd84e3cc
SHA-256: b9ceabd0c10810e70fee2d0854c8aad69707dada0276333092faaeca65a50d53
samba3x-client-3.6.6-0.136.el5.s390x.rpm
File outdated by:  RHSA-2014:0330
    MD5: ff1ef29f93b9168de074017887b342ed
SHA-256: b21d4d33e7a29dcec68ca6666ca0d0713342775823ffef4c67cd56418f878c81
samba3x-common-3.6.6-0.136.el5.s390x.rpm
File outdated by:  RHSA-2014:0330
    MD5: a37191fc8ca1995c333bb32816b1811d
SHA-256: cae4cac5b4f7c0fea4af38e9c08f4ffe56c90d50611b80bfdc21159bbfa35170
samba3x-debuginfo-3.6.6-0.136.el5.s390.rpm
File outdated by:  RHSA-2014:0330
    MD5: 8408d751906be4e805a174d69005266e
SHA-256: 19c7bdc07573af30785a882ab74fd0ddb1ebaf3f3397c3c658d564e1ba733e0b
samba3x-debuginfo-3.6.6-0.136.el5.s390x.rpm
File outdated by:  RHSA-2014:0330
    MD5: b1773867fb83d7e6fc6b44243ba9e515
SHA-256: a21da1fd91cd7416c0a84ed9aa35150c47749c776874f2240d52bf068dcab268
samba3x-doc-3.6.6-0.136.el5.s390x.rpm
File outdated by:  RHSA-2014:0330
    MD5: 57292de26831fd24eaf9512e3106cf65
SHA-256: 296a634cd0faed685aadd2b4379d6591c2936a6eb2e102a2ee16c58236d1b74d
samba3x-domainjoin-gui-3.6.6-0.136.el5.s390x.rpm
File outdated by:  RHSA-2014:0330
    MD5: e9f70e52ca4c5a44919307e8e626f40c
SHA-256: 63d3d2b4f3ce4b5fc0ca123f7311e31569813b677bb4501f3464af81baa8d5a0
samba3x-swat-3.6.6-0.136.el5.s390x.rpm
File outdated by:  RHSA-2014:0330
    MD5: 50bf61c35f0235dc0f5861fc949402ce
SHA-256: b18789bedb8c94d82408dacb7ef8f0025cf9bacd22c71c82d51a046450a34b5b
samba3x-winbind-3.6.6-0.136.el5.s390.rpm
File outdated by:  RHSA-2014:0330
    MD5: d268c6b9623bcc1dd54e614d2fac152c
SHA-256: c939e47399946a59b1c0ed21e55b5246d6ba63766af6400ebff5d31b0123a204
samba3x-winbind-3.6.6-0.136.el5.s390x.rpm
File outdated by:  RHSA-2014:0330
    MD5: aad4e0d1747c097d62347c9a540e6fe0
SHA-256: f310e1bdf8e1aaaae26bcefd959c1d11c91f7e8c37ef0b20ed60f528147c1458
samba3x-winbind-devel-3.6.6-0.136.el5.s390.rpm
File outdated by:  RHSA-2014:0330
    MD5: b8e65600bc75ef1fc7c36a67433cd87e
SHA-256: 6fc41c55c9ceebeca69113090b347829a7a4b7e952fec9a28dd2c1c81d444446
samba3x-winbind-devel-3.6.6-0.136.el5.s390x.rpm
File outdated by:  RHSA-2014:0330
    MD5: 17d69aace2813b459cd5e9ce3daf2728
SHA-256: c57edcdac42e63831fd6d55d8368758e45106b6b4ee5c433ba39ccc69417ce62
 
x86_64:
samba3x-3.6.6-0.136.el5.x86_64.rpm
File outdated by:  RHSA-2014:0330
    MD5: 222e17d43d9ea18dd8e2f9e735a8b785
SHA-256: 91e8789ad93b4bf3e93479722a1b07610f29a3b308cbaf5656dfeeab625db33f
samba3x-client-3.6.6-0.136.el5.x86_64.rpm
File outdated by:  RHSA-2014:0330
    MD5: 5c12bd7b6fd106f94196c21b860113f5
SHA-256: 53280f314ea78b95b0a0f8a15e307e0f50e3a17c36c09d062164abe4a534dfac
samba3x-common-3.6.6-0.136.el5.x86_64.rpm
File outdated by:  RHSA-2014:0330
    MD5: 115deb0ba528f85727f984240654bb32
SHA-256: 9360d76439e84d5ebcf94a3660ec02cd27ac5bc7d12287002d3c5b8b6b05ad76
samba3x-debuginfo-3.6.6-0.136.el5.i386.rpm
File outdated by:  RHSA-2014:0330
    MD5: 3271b7a00d326784b26522f62631fe2f
SHA-256: f8c88ca3461abbb88aaa91f68bb14d6107efe38ed46bec65e331e7e24fa8f20b
samba3x-debuginfo-3.6.6-0.136.el5.x86_64.rpm
File outdated by:  RHSA-2014:0330
    MD5: 8fcf92ade0e0c7b3a8249b1e5e086b1a
SHA-256: e5cdfb4727d80f1f286a53516700dc3a48e93e3c982dc9c01c845bdf41d70fe4
samba3x-doc-3.6.6-0.136.el5.x86_64.rpm
File outdated by:  RHSA-2014:0330
    MD5: 1af45bcccfc4ea829117851a3a5fe326
SHA-256: 84a78b52e6b8a92c624a2f66ca7a740c45999ae1ceab1af8559c3f3681da585e
samba3x-domainjoin-gui-3.6.6-0.136.el5.x86_64.rpm
File outdated by:  RHSA-2014:0330
    MD5: aeaf43680ef07da04312b646680e1c7c
SHA-256: a731a7c45a6bc9aafe79828aaae57f1f1a32b6fba89ce2ddab9e44b03e94faf0
samba3x-swat-3.6.6-0.136.el5.x86_64.rpm
File outdated by:  RHSA-2014:0330
    MD5: 9b7807c7c6693eac1eca052005c29850
SHA-256: e16958b49a94941817d5d34e42040c3580950d1c292b2dde8f779aa9f40697ff
samba3x-winbind-3.6.6-0.136.el5.i386.rpm
File outdated by:  RHSA-2014:0330
    MD5: 3e783baf989dbe196a8857eb8c3b10fd
SHA-256: f9ee0b15c335e52ac8eb3d21fc6134bfe1ffef8a63b87e7828e1ca9c21ead056
samba3x-winbind-3.6.6-0.136.el5.x86_64.rpm
File outdated by:  RHSA-2014:0330
    MD5: 71e0d524ffd9df90a328bc4aa6ea0128
SHA-256: 63bc69cfc2f69f57c8490468d21efcb11d9eef84d4b08b96f41cc61f418a32fd
samba3x-winbind-devel-3.6.6-0.136.el5.i386.rpm
File outdated by:  RHSA-2014:0330
    MD5: 0966bca25162957dc6a8da223ef545dc
SHA-256: 9461a5c9b84e57657ed684f591ea0a8c198704182f7e648ccaaea5fefdcf639a
samba3x-winbind-devel-3.6.6-0.136.el5.x86_64.rpm
File outdated by:  RHSA-2014:0330
    MD5: 3a3b947e17a149e23ec693d771af36a6
SHA-256: 2a6f0308244938545bfc4b354a25257ef6d4f445540abdd66f63e41d867f005d
 
Red Hat Enterprise Linux Desktop (v. 5 client)

SRPMS:
samba3x-3.6.6-0.136.el5.src.rpm
File outdated by:  RHSA-2014:0330
    MD5: 0cbb26356c2377496a74de7013d181a8
SHA-256: d29fed32861f40b046e9c163a3db26dd540241782c895aef88e15ecd82958f0a
 
IA-32:
samba3x-3.6.6-0.136.el5.i386.rpm
File outdated by:  RHSA-2014:0330
    MD5: b78fbb07e0b382d0cae0ca645ca97459
SHA-256: 1a6dde8eedfa751cc5114a2637fb6bd046f76f85969a4ab41e1d1ff3f331df31
samba3x-client-3.6.6-0.136.el5.i386.rpm
File outdated by:  RHSA-2014:0330
    MD5: 08affdf994c8a00c1d07affa902130ce
SHA-256: 431cfa19b81e892398fbb78882c48ec622f54b90c64269dcb219b15f8c375c2a
samba3x-common-3.6.6-0.136.el5.i386.rpm
File outdated by:  RHSA-2014:0330
    MD5: 63dc3592b16e2a87ba0c8d28fc473c56
SHA-256: 8d1e34525b0dd40b6cf8c82f0133c9a35d689fc09a25f134083735fb5e278395
samba3x-debuginfo-3.6.6-0.136.el5.i386.rpm
File outdated by:  RHSA-2014:0330
    MD5: 3271b7a00d326784b26522f62631fe2f
SHA-256: f8c88ca3461abbb88aaa91f68bb14d6107efe38ed46bec65e331e7e24fa8f20b
samba3x-doc-3.6.6-0.136.el5.i386.rpm
File outdated by:  RHSA-2014:0330
    MD5: 3922e6a98ed1e8d0655a5a502a407e8a
SHA-256: 19e4dde388f0767b0a43031e0430d9db9f30208262722afd383c261381ad63e8
samba3x-domainjoin-gui-3.6.6-0.136.el5.i386.rpm
File outdated by:  RHSA-2014:0330
    MD5: 3f1b430fc74801e4905d6994b69c3b2e
SHA-256: 642c6390ba0e561376340e27e62b9518a1ea34da01891bc49f0c98a1d66b740a
samba3x-swat-3.6.6-0.136.el5.i386.rpm
File outdated by:  RHSA-2014:0330
    MD5: 1c9bf9226838913200368941d4b73823
SHA-256: b40b92edf86037f33461e5e020c60165f62675bfa8129dcb0ddd33e67e23c7e9
samba3x-winbind-3.6.6-0.136.el5.i386.rpm
File outdated by:  RHSA-2014:0330
    MD5: 3e783baf989dbe196a8857eb8c3b10fd
SHA-256: f9ee0b15c335e52ac8eb3d21fc6134bfe1ffef8a63b87e7828e1ca9c21ead056
 
x86_64:
samba3x-3.6.6-0.136.el5.x86_64.rpm
File outdated by:  RHSA-2014:0330
    MD5: 222e17d43d9ea18dd8e2f9e735a8b785
SHA-256: 91e8789ad93b4bf3e93479722a1b07610f29a3b308cbaf5656dfeeab625db33f
samba3x-client-3.6.6-0.136.el5.x86_64.rpm
File outdated by:  RHSA-2014:0330
    MD5: 5c12bd7b6fd106f94196c21b860113f5
SHA-256: 53280f314ea78b95b0a0f8a15e307e0f50e3a17c36c09d062164abe4a534dfac
samba3x-common-3.6.6-0.136.el5.x86_64.rpm
File outdated by:  RHSA-2014:0330
    MD5: 115deb0ba528f85727f984240654bb32
SHA-256: 9360d76439e84d5ebcf94a3660ec02cd27ac5bc7d12287002d3c5b8b6b05ad76
samba3x-debuginfo-3.6.6-0.136.el5.i386.rpm
File outdated by:  RHSA-2014:0330
    MD5: 3271b7a00d326784b26522f62631fe2f
SHA-256: f8c88ca3461abbb88aaa91f68bb14d6107efe38ed46bec65e331e7e24fa8f20b
samba3x-debuginfo-3.6.6-0.136.el5.x86_64.rpm
File outdated by:  RHSA-2014:0330
    MD5: 8fcf92ade0e0c7b3a8249b1e5e086b1a
SHA-256: e5cdfb4727d80f1f286a53516700dc3a48e93e3c982dc9c01c845bdf41d70fe4
samba3x-doc-3.6.6-0.136.el5.x86_64.rpm
File outdated by:  RHSA-2014:0330
    MD5: 1af45bcccfc4ea829117851a3a5fe326
SHA-256: 84a78b52e6b8a92c624a2f66ca7a740c45999ae1ceab1af8559c3f3681da585e
samba3x-domainjoin-gui-3.6.6-0.136.el5.x86_64.rpm
File outdated by:  RHSA-2014:0330
    MD5: aeaf43680ef07da04312b646680e1c7c
SHA-256: a731a7c45a6bc9aafe79828aaae57f1f1a32b6fba89ce2ddab9e44b03e94faf0
samba3x-swat-3.6.6-0.136.el5.x86_64.rpm
File outdated by:  RHSA-2014:0330
    MD5: 9b7807c7c6693eac1eca052005c29850
SHA-256: e16958b49a94941817d5d34e42040c3580950d1c292b2dde8f779aa9f40697ff
samba3x-winbind-3.6.6-0.136.el5.i386.rpm
File outdated by:  RHSA-2014:0330
    MD5: 3e783baf989dbe196a8857eb8c3b10fd
SHA-256: f9ee0b15c335e52ac8eb3d21fc6134bfe1ffef8a63b87e7828e1ca9c21ead056
samba3x-winbind-3.6.6-0.136.el5.x86_64.rpm
File outdated by:  RHSA-2014:0330
    MD5: 71e0d524ffd9df90a328bc4aa6ea0128
SHA-256: 63bc69cfc2f69f57c8490468d21efcb11d9eef84d4b08b96f41cc61f418a32fd
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

905700 - CVE-2013-0213 samba: clickjacking vulnerability in SWAT
905704 - CVE-2013-0214 samba: cross-site request forgery vulnerability in SWAT
984401 - CVE-2013-4124 samba: DoS via integer overflow when reading an EA list


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/