USN-22-1: samba vulnerability

10 November 2004

samba vulnerability

A security issue affects these releases of Ubuntu and its derivatives:

  • Ubuntu 4.10

Software Description

Details

Karol Wiesek discovered a Denial of Service vulnerability in samba. A flaw in the input validation routines used to match filename strings containing wildcard characters may allow a remote user to consume more than normal amounts of CPU resources, thus impacting the performance and response of the server. In some circumstances the server can become entirely unresponsive.

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 4.10
samba

To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades.

References