Updated samba package fixes security vulnerability
Publication date: 11 Aug 2013Modification date: 11 Aug 2013
Type: security
Affected Mageia releases : 2 , 3
CVE: CVE-2013-4124
Description
Integer overflow in the read_nttrans_ea_list function in nttrans.c in smbd in Samba 3.x before 3.5.22, 3.6.x before 3.6.17, and 4.x before 4.0.8 allows remote attackers to cause a denial of service (memory consumption) via a malformed packet (CVE-2013-4124).
References
SRPMS
3/core
- samba-3.6.15-1.1.mga3
2/core
- samba-3.6.5-2.3.mga2