CVE-2014-3493

Опубликовано: 23 июн. 2014

Источник: redhat

CVSS2: 2.7

Описание

The push_ascii function in smbd in Samba 3.6.x before 3.6.24, 4.0.x before 4.0.19, and 4.1.x before 4.1.9 allows remote authenticated users to cause a denial of service (memory corruption and daemon crash) via an attempt to read a Unicode pathname without specifying use of Unicode, leading to a character-set conversion failure that triggers an invalid pointer dereference.

It was discovered that smbd, the Samba file server daemon, did not properly handle certain files that were stored on the disk and used a valid Unicode character in the file name. An attacker able to send an authenticated non-Unicode request that attempted to read such a file could cause smbd to crash.

Отчет

This issue affects the versions of samba3x as shipped with Red Hat Enterprise Linux 5. This issue affects the versions of samba and samba4 as shipped with Red Hat Enterprise Linux 6. This issue affects the versions of samba as shipped with Red Hat Enterprise Linux 7. This issue did not affect the versions of samba as shipped with Red Hat Enterprise Linux 5.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 5	samba	Not affected
Red Hat Storage 2.1	samba	Affected
Red Hat Enterprise Linux 5	samba3x	Fixed	RHSA-2014:0866	09.07.2014
Red Hat Enterprise Linux 6	samba	Fixed	RHSA-2014:0866	09.07.2014
Red Hat Enterprise Linux 6	samba4	Fixed	RHSA-2014:1009	05.08.2014
Red Hat Enterprise Linux 7	samba	Fixed	RHSA-2014:0867	09.07.2014