Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Vista

Samba REG File Writing Race Condition Vulnerability

Solution:
Gentoo Linux have released an advisory that addresses this vulnerability (200303-11), users who are running net-fs/samba are advised to upgrade to samba-2.2.8 using the following commands:

emerge sync
emerge samba
emerge clean

Debian has released an advisory. Information about obtaining and applying fixes are available in the referenced advisory.

An advisory for Sorcerer Linux is available which addresses this issue. It is possible to update to Samba 2.2.8 with the following commands:

augur synch && augur update

Mandrake has released an advisory (MDKSA-2003:032) which includes fixes for this issue. Please see the attached advisory for further details on obtaining and applying fixes.

SGI has released a security advisory. An updated version of Samba is available for Irix via the Samba website. However, Samba is not a default package for the Irix operating system.

Conectiva has released an advisory (CLA-2003:615) which addresses this vulnerability. Please see the attached advisory for details on obtaining and applying fixes.

Fixes available:


Samba Samba 2.0 .0

Samba Samba 2.0.1

Samba Samba 2.0.10

Samba Samba 2.0.2

Samba Samba 2.0.3

Samba Samba 2.0.4

Samba Samba 2.0.5

Samba Samba 2.0.6

Samba Samba 2.0.7

Samba Samba 2.0.8

Samba Samba 2.0.9

Samba Samba 2.2 .0

Samba Samba 2.2 .0a

Samba Samba 2.2.1 a

Samba Samba 2.2.2

Samba Samba 2.2.3 a

Samba Samba 2.2.3

Samba Samba 2.2.4

Samba Samba 2.2.5

Samba Samba 2.2.6

Samba Samba 2.2.7 a

Samba Samba 2.2.7







 

Privacy Statement
Copyright 2008, SecurityFocus