Synopsis: Critical: samba4 security update
Advisory ID: SLSA-2015:0250-1
Issue Date: 2015-02-23
CVE Numbers: CVE-2015-0240
--
An uninitialized pointer use flaw was found in the Samba daemon (smbd). A
malicious Samba client could send specially crafted netlogon packets that,
when processed by smbd, could potentially lead to arbitrary code execution
with the privileges of the user running smbd (by default, the root user).
(CVE-2015-0240)
After installing this update, the smb service will be restarted
automatically.
--
SL6
x86_64
samba4-4.0.0-66.el6_6.rc4.x86_64.rpm
samba4-client-4.0.0-66.el6_6.rc4.x86_64.rpm
samba4-common-4.0.0-66.el6_6.rc4.x86_64.rpm
samba4-dc-4.0.0-66.el6_6.rc4.x86_64.rpm
samba4-dc-libs-4.0.0-66.el6_6.rc4.x86_64.rpm
samba4-debuginfo-4.0.0-66.el6_6.rc4.x86_64.rpm
samba4-devel-4.0.0-66.el6_6.rc4.x86_64.rpm
samba4-libs-4.0.0-66.el6_6.rc4.x86_64.rpm
samba4-pidl-4.0.0-66.el6_6.rc4.x86_64.rpm
samba4-python-4.0.0-66.el6_6.rc4.x86_64.rpm
samba4-swat-4.0.0-66.el6_6.rc4.x86_64.rpm
samba4-test-4.0.0-66.el6_6.rc4.x86_64.rpm
samba4-winbind-4.0.0-66.el6_6.rc4.x86_64.rpm
samba4-winbind-clients-4.0.0-66.el6_6.rc4.x86_64.rpm
samba4-winbind-krb5-locator-4.0.0-66.el6_6.rc4.x86_64.rpm
i386
samba4-4.0.0-66.el6_6.rc4.i686.rpm
samba4-client-4.0.0-66.el6_6.rc4.i686.rpm
samba4-common-4.0.0-66.el6_6.rc4.i686.rpm
samba4-dc-4.0.0-66.el6_6.rc4.i686.rpm
samba4-dc-libs-4.0.0-66.el6_6.rc4.i686.rpm
samba4-debuginfo-4.0.0-66.el6_6.rc4.i686.rpm
samba4-devel-4.0.0-66.el6_6.rc4.i686.rpm
samba4-libs-4.0.0-66.el6_6.rc4.i686.rpm
samba4-pidl-4.0.0-66.el6_6.rc4.i686.rpm
samba4-python-4.0.0-66.el6_6.rc4.i686.rpm
samba4-swat-4.0.0-66.el6_6.rc4.i686.rpm
samba4-test-4.0.0-66.el6_6.rc4.i686.rpm
samba4-winbind-4.0.0-66.el6_6.rc4.i686.rpm
samba4-winbind-clients-4.0.0-66.el6_6.rc4.i686.rpm
samba4-winbind-krb5-locator-4.0.0-66.el6_6.rc4.i686.rpm
- Scientific Linux Development Team