Описание
Samba 3.x before 3.3.15, 3.4.x before 3.4.12, and 3.5.x before 3.5.7 does not perform range checks for file descriptors before use of the FD_SET macro, which allows remote attackers to cause a denial of service (stack memory corruption, and infinite loop or daemon crash) by opening a large number of files, related to (1) Winbind or (2) smbd.
Samba 3.x before 3.3.15, 3.4.x before 3.4.12, and 3.5.x before 3.5.7 does not perform range checks for file descriptors before use of the FD_SET macro, which allows remote attackers to cause a denial of service (stack memory corruption, and infinite loop or daemon crash) by opening a large number of files, related to (1) Winbind or (2) smbd.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2011-0719
- https://bugzilla.redhat.com/show_bug.cgi?id=678328
- https://exchange.xforce.ibmcloud.com/vulnerabilities/65724
- http://lists.apple.com/archives/security-announce/2011//Jun/msg00000.html
- http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056229.html
- http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056241.html
- http://marc.info/?l=bugtraq&m=130835366526620&w=2
- http://samba.org/samba/security/CVE-2011-0719.html
- http://secunia.com/advisories/43482
- http://secunia.com/advisories/43503
- http://secunia.com/advisories/43512
- http://secunia.com/advisories/43517
- http://secunia.com/advisories/43556
- http://secunia.com/advisories/43557
- http://secunia.com/advisories/43843
- http://slackware.com/security/viewer.php?l=slackware-security&y=2011&m=slackware-security.593629
- http://support.apple.com/kb/HT4723
- http://www.debian.org/security/2011/dsa-2175
- http://www.mandriva.com/security/advisories?name=MDVSA-2011:038
- http://www.redhat.com/support/errata/RHSA-2011-0305.html
- http://www.redhat.com/support/errata/RHSA-2011-0306.html
- http://www.samba.org/samba/history/samba-3.3.15.html
- http://www.samba.org/samba/history/samba-3.4.12.html
- http://www.samba.org/samba/history/samba-3.5.7.html
- http://www.securityfocus.com/bid/46597
- http://www.securitytracker.com/id?1025132
- http://www.ubuntu.com/usn/USN-1075-1
- http://www.vupen.com/english/advisories/2011/0517
- http://www.vupen.com/english/advisories/2011/0518
- http://www.vupen.com/english/advisories/2011/0519
- http://www.vupen.com/english/advisories/2011/0520
- http://www.vupen.com/english/advisories/2011/0522
- http://www.vupen.com/english/advisories/2011/0541
- http://www.vupen.com/english/advisories/2011/0702
Связанные уязвимости
Samba 3.x before 3.3.15, 3.4.x before 3.4.12, and 3.5.x before 3.5.7 does not perform range checks for file descriptors before use of the FD_SET macro, which allows remote attackers to cause a denial of service (stack memory corruption, and infinite loop or daemon crash) by opening a large number of files, related to (1) Winbind or (2) smbd.
Samba 3.x before 3.3.15, 3.4.x before 3.4.12, and 3.5.x before 3.5.7 does not perform range checks for file descriptors before use of the FD_SET macro, which allows remote attackers to cause a denial of service (stack memory corruption, and infinite loop or daemon crash) by opening a large number of files, related to (1) Winbind or (2) smbd.
Samba 3.x before 3.3.15, 3.4.x before 3.4.12, and 3.5.x before 3.5.7 does not perform range checks for file descriptors before use of the FD_SET macro, which allows remote attackers to cause a denial of service (stack memory corruption, and infinite loop or daemon crash) by opening a large number of files, related to (1) Winbind or (2) smbd.
Samba 3.x before 3.3.15, 3.4.x before 3.4.12, and 3.5.x before 3.5.7 d ...
