Packages
- samba - SMB/CIFS file, print, and login server for Unix
Details
Ivano Cristofolini discovered that Samba incorrectly handled some Local
Security Authority (LSA) remote procedure calls (RPC). A remote, authenticated
attacker could exploit this to grant administrative privileges to arbitrary
users. The administrative privileges could be used to bypass permission checks
performed by the Samba server.
Ivano Cristofolini discovered that Samba incorrectly handled some Local
Security Authority (LSA) remote procedure calls (RPC). A remote, authenticated
attacker could exploit this to grant administrative privileges to arbitrary
users. The administrative privileges could be used to bypass permission checks
performed by the Samba server.
Update instructions
After a standard system update you may need to review the privileges of Samba user accounts.
Learn more about how to get the fixes.The problem can be corrected by updating your system to the following package versions:
Ubuntu Release | Package Version | ||
---|---|---|---|
12.04 precise | samba – 2:3.6.3-2ubuntu2.1 | ||
11.10 oneiric | samba – 2:3.5.11~dfsg-1ubuntu2.3 | ||
11.04 natty | samba – 2:3.5.8~dfsg-1ubuntu2.5 | ||
10.04 lucid | samba – 2:3.4.7~dfsg-1ubuntu3.10 |
Reduce your security exposure
Ubuntu Pro provides ten-year security coverage to 25,000+ packages in Main and Universe repositories, and it is free for up to five machines.