Samba Remote Arbitrary File Access Vulnerability

Solution:
SuSE has released an advisory (SUSE-SA:2004:035) and fixes to address this vulnerability in affected SuSE products. Customers are advised to peruse the referenced advisory for further information pertaining to obtaining and applying appropriate fixes.

Trustix Secure Linux has made advisory TSLSA-2004-0051 along with fixes available for this issue. For more information please see the referenced advisory.

Mandrake Linux has released advisory MDKSA-2004:104 along with fixes addressing this issue. Please see the referenced advisory for further information.

Red Hat has released advisory RHSA-2004:498-04 and fixes to address this issue on Red Hat Linux Enterprise platforms. Customers who are affected by this issue are advised to apply the appropriate updates. Customers subscribed to the Red Hat Network may apply the appropriate fixes using the Red Hat Update Agent (up2date). Please see referenced advisory for additional information.

Samba has released an advisory dealing with this issue. An upgrade and a patch have been made available to resolve this issue.

Debian has released an advisory (DSA 600-1) to address this issue. Fixes have been released for various platforms. Please see the referenced advisory for more information.

The Fedora Legacy project has released advisory FLSA:2102 along with fixes to address this issue for RedHat Linux 7.3 and 9.0. Please see the referenced advisory for further information. This advisory has been updated 14 Oct 2004 to correct broken packages.

Conectiva Linux has released advisory CLA-2004:873 along with fixes to address this issue. Please see the referenced advisory for further information.

HP has released an advisory (HPSBUX01086) to address this issue. Users are advised to upgrade to HP-UX CIFS (Samba) version A.01.11.03. Please see the referenced advisory for more information.

HP has released advisory HPSBMP01089-SSRT4838 dealing with this issue for their MPE/iX product. Please see the referenced advisory for more information.

Sun has released alert ID 57694 to address this issue for Java Desktop operating systems. Please see the referenced advisory for further information on obtaining fixes.


Samba Samba 2.2 .0

Samba Samba 2.2 .0a

Samba Samba 2.2 a

Samba Samba 2.2.1 a

Samba Samba 2.2.11

Samba Samba 2.2.2

Samba Samba 2.2.3

Samba Samba 2.2.3 a

Samba Samba 2.2.4

Samba Samba 2.2.5

Samba Samba 2.2.5

Samba Samba 2.2.6

Samba Samba 2.2.7 a

Samba Samba 2.2.7

Samba Samba 2.2.8

Samba Samba 2.2.8 a

Samba Samba 2.2.9

Samba Samba 3.0

Samba Samba 3.0 alpha

Samba Samba 3.0.1

Samba Samba 3.0.2 a

Samba Samba 3.0.2

Samba Samba 3.0.3

Samba Samba 3.0.4 -r1

Samba Samba 3.0.4

Samba Samba 3.0.5


 

Privacy Statement
Copyright 2010, SecurityFocus