Synopsis: Important: samba4 security update Advisory ID: SLSA-2013:1805-1 Issue Date: 2013-12-10 CVE Numbers: CVE-2013-4408 -- A heap-based buffer overflow flaw was found in the DCE-RPC client code in Samba. A specially crafted DCE-RPC packet could cause various Samba programs to crash or, possibly, execute arbitrary code when parsed. A malicious or compromised Active Directory Domain Controller could use this flaw to compromise the winbindd daemon running with root privileges. (CVE-2013-4408) After installing this update, the smb service will be restarted automatically. -- SL6 x86_64 samba4-4.0.0-60.el6_5.rc4.x86_64.rpm samba4-client-4.0.0-60.el6_5.rc4.x86_64.rpm samba4-common-4.0.0-60.el6_5.rc4.x86_64.rpm samba4-dc-4.0.0-60.el6_5.rc4.x86_64.rpm samba4-dc-libs-4.0.0-60.el6_5.rc4.x86_64.rpm samba4-debuginfo-4.0.0-60.el6_5.rc4.x86_64.rpm samba4-devel-4.0.0-60.el6_5.rc4.x86_64.rpm samba4-libs-4.0.0-60.el6_5.rc4.x86_64.rpm samba4-pidl-4.0.0-60.el6_5.rc4.x86_64.rpm samba4-python-4.0.0-60.el6_5.rc4.x86_64.rpm samba4-swat-4.0.0-60.el6_5.rc4.x86_64.rpm samba4-test-4.0.0-60.el6_5.rc4.x86_64.rpm samba4-winbind-4.0.0-60.el6_5.rc4.x86_64.rpm samba4-winbind-clients-4.0.0-60.el6_5.rc4.x86_64.rpm samba4-winbind-krb5-locator-4.0.0-60.el6_5.rc4.x86_64.rpm i386 samba4-4.0.0-60.el6_5.rc4.i686.rpm samba4-client-4.0.0-60.el6_5.rc4.i686.rpm samba4-common-4.0.0-60.el6_5.rc4.i686.rpm samba4-dc-4.0.0-60.el6_5.rc4.i686.rpm samba4-dc-libs-4.0.0-60.el6_5.rc4.i686.rpm samba4-debuginfo-4.0.0-60.el6_5.rc4.i686.rpm samba4-devel-4.0.0-60.el6_5.rc4.i686.rpm samba4-libs-4.0.0-60.el6_5.rc4.i686.rpm samba4-pidl-4.0.0-60.el6_5.rc4.i686.rpm samba4-python-4.0.0-60.el6_5.rc4.i686.rpm samba4-swat-4.0.0-60.el6_5.rc4.i686.rpm samba4-test-4.0.0-60.el6_5.rc4.i686.rpm samba4-winbind-4.0.0-60.el6_5.rc4.i686.rpm samba4-winbind-clients-4.0.0-60.el6_5.rc4.i686.rpm samba4-winbind-krb5-locator-4.0.0-60.el6_5.rc4.i686.rpm - Scientific Linux Development Team