USN-987-1 -- samba vulnerabilityID: oval:org.secpod.oval:def:700156 | Date: (C)2011-01-28 (M)2023-02-20 |
Class: PATCH | Family: unix |
Andrew Bartlett discovered that Samba did not correctly validate the length when parsing SIDs. A remote attacker could send a specially crafted request to the server and cause a denial of service, or possibly execute arbitrary code with the privileges of the Samba service . The default compiler options for Ubuntu 8.04 LTS and newer should reduce the vulnerability to a denial of service.
Platform: |
Ubuntu 8.04 |
Ubuntu 10.04 |
Ubuntu 9.10 |
Ubuntu 6.06 |
Ubuntu 9.04 |