oss-sec mailing list archives
Re: Fwd: [Full-disclosure] stratsec Security Advisory SS-2010-005: Samba Multiple DoS Vulnerabilities
From: Thomas Biege <thomas () suse de>
Date: Wed, 26 May 2010 11:23:35 +0200
Am Mittwoch 26 Mai 2010 09:46:44 schrieb Tomas Hoger:
On Tue, 25 May 2010 17:10:04 +0200 Thomas Biege wrote:So far no assignments were made, right?Do you have any public bug report with further details about these flaws?
I am just aware of this posting to FD.
According to our samba maintainers, this code is only executed in per-connection smbd child and one can only DoS own connection. It seems upstream has not handled this as security either.
That would be good. One samba update less. Cheers, Thomas -- Thomas Biege <thomas () suse de>, SUSE LINUX, Security Support & Auditing SUSE LINUX Products GmbH, GF: Markus Rex, HRB 16746 (AG Nuernberg) -- Wer aufhoert besser werden zu wollen, hoert auf gut zu sein. -- Marie von Ebner-Eschenbach
Current thread:
- Fwd: [Full-disclosure] stratsec Security Advisory SS-2010-005: Samba Multiple DoS Vulnerabilities Thomas Biege (May 20)
- Re: Fwd: [Full-disclosure] stratsec Security Advisory SS-2010-005: Samba Multiple DoS Vulnerabilities Thomas Biege (May 25)
- Re: Fwd: [Full-disclosure] stratsec Security Advisory SS-2010-005: Samba Multiple DoS Vulnerabilities Josh Bressers (May 25)
- Re: Fwd: [Full-disclosure] stratsec Security Advisory SS-2010-005: Samba Multiple DoS Vulnerabilities Tomas Hoger (May 26)
- Re: Fwd: [Full-disclosure] stratsec Security Advisory SS-2010-005: Samba Multiple DoS Vulnerabilities Thomas Biege (May 26)
- <Possible follow-ups>
- Re: Fwd: [Full-disclosure] stratsec Security Advisory SS-2010-005: Samba Multiple DoS Vulnerabilities Josh Bressers (May 25)
- Re: Fwd: [Full-disclosure] stratsec Security Advisory SS-2010-005: Samba Multiple DoS Vulnerabilities Thomas Biege (May 26)
- Re: Fwd: [Full-disclosure] stratsec Security Advisory SS-2010-005: Samba Multiple DoS Vulnerabilities (3.3.x) Eren Türkay (May 27)
- Re: Fwd: [Full-disclosure] stratsec Security Advisory SS-2010-005: Samba Multiple DoS Vulnerabilities (3.3.x) Tomas Hoger (May 28)
- Re: Fwd: [Full-disclosure] stratsec Security Advisory SS-2010-005: Samba Multiple DoS Vulnerabilities (3.3.x) Eren Türkay (May 28)
- Re: Fwd: [Full-disclosure] stratsec Security Advisory SS-2010-005: Samba Multiple DoS Vulnerabilities (3.3.x) Tomas Hoger (May 31)
- Re: Fwd: [Full-disclosure] stratsec Security Advisory SS-2010-005: Samba Multiple DoS Vulnerabilities Thomas Biege (May 25)