Purchase Linux CDs / DVDs / Flash Drives at OSDisc.com

Welcome to Our Community

While Linux.org has been around for a while, we recently changed management and had to purge most of the content (including users). If you signed up before April 23rd please sign up again. Thanks!

Ubuntu Security Update USN-3296-2: Samba vulnerability

Discussion in 'Linux Security Announcements (Automated)' started by LinuxBot, May 25, 2017.

  1. LinuxBot

    LinuxBot Moderator
    Staff Member

    Joined:
    Apr 25, 2017
    Messages:
    30
    Likes Received:
    0
    Ubuntu Security Notice USN-3296-2


    24th May, 2017

    samba vulnerability


    A security issue affects these releases of Ubuntu and its derivatives:

    • Ubuntu 12.04 LTS
    Summary


    Samba could be made to run programs as an administrator.

    Software description

    • samba - SMB/CIFS file, print, and login server for Unix
    Details




    USN-3296-1 fixed a vulnerability in Samba. This update provides the
    corresponding update for Ubuntu 12.04 ESM.

    Original advisory details:

    It was discovered that Samba incorrectly handled shared libraries. A remote
    attacker could use this flaw to upload a shared library to a writable share
    and execute arbitrary code.

    Update instructions


    The problem can be corrected by updating your system to the following package version:

    Ubuntu 12.04 LTS:
    samba 2:3.6.25-0ubuntu0.12.04.11

    To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades.

    In general, a standard system update will make all the necessary changes.

    References


    CVE-2017-7494

    Continue reading...
     

Share This Page