git.samba.org / samba.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 1cdf89a) | patch
Fix for CVE-2007-5398.
authorGerald (Jerry) Carter <jerry@samba.org>
Thu, 15 Nov 2007 02:51:14 +0000 (20:51 -0600)
committerGerald (Jerry) Carter <jerry@samba.org>
Thu, 15 Nov 2007 16:47:22 +0000 (10:47 -0600)
commita7c6fe1e3cb4d66a48f43a49fe31778adace2332
treeb72a8bf1ca7b0d6ba98986697a20bcf84f5fd3d3tree
parent1cdf89a02af6e7a2deed3f59519af97c10dbdaa3commit | diff
Fix for CVE-2007-5398.

== Subject:     Remote code execution in Samba's WINS
==              server daemon (nmbd) when processing name
==              registration followed name query requests.
==
== CVE ID#:     CVE-2007-5398
==
== Versions:    Samba 3.0.0 - 3.0.26a (inclusive)
...
Secunia Research reported a vulnerability that allows for
the execution of arbitrary code in nmbd.  This defect may
only be exploited when the "wins support" parameter has
been enabled in smb.conf.
source/nmbd/nmbd_packets.c diff | blob | history
Samba Shared Repository