LinuxQuestions.org
Support LQ: Use code LQ3 and save $3 on Domain Registration
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Closed Thread
 
Search this Thread
Old 11-27-2012, 08:31 PM   #1
edeamat
LQ Newbie
 
Registered: Mar 2009
Location: Lima Peru
Distribution: Centos
Posts: 17

Rep: Reputation: 2
Heap Overflow en SAMBA


Hi Colleagues,

I need your help as soon as possible. I used a nessus to scan the vulnerabilities about samba and nessus found this issue:

Heap Overflow en SAMBA (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0870)

How can I find the solution? I'm a bit confused because in Red Hat page talks about Samba and Samba 3x.

My actual version is: 3.0.33-3.28.el5

I get the version with this command: rpm -qi samba

Thank you very much for your help.

Regards,

Eduardo
 
Old 11-27-2012, 09:31 PM   #2
unSpawn
Moderator
 
Registered: May 2001
Posts: 27,666
Blog Entries: 54

Rep: Reputation: 2952Reputation: 2952Reputation: 2952Reputation: 2952Reputation: 2952Reputation: 2952Reputation: 2952Reputation: 2952Reputation: 2952Reputation: 2952Reputation: 2952
I don't know how old your 3.28 patch version is but 3.0.33-3.38 (RHEL-5U8 current is 3.39), built way back on 2012-Apr-10, already fixed CVE-2012-0870.
 
Old 11-28-2012, 07:18 PM   #3
edeamat
LQ Newbie
 
Registered: Mar 2009
Location: Lima Peru
Distribution: Centos
Posts: 17

Original Poster
Rep: Reputation: 2
Thank you very much for your help.

Tell me is it possible to download rpm and upgrade version to my Red Hat without connect to the register server.......I have a small server for testing and this server is not connected to the internet for security purpose.

Regards.
 
Old 11-28-2012, 08:35 PM   #4
unSpawn
Moderator
 
Registered: May 2001
Posts: 27,666
Blog Entries: 54

Rep: Reputation: 2952Reputation: 2952Reputation: 2952Reputation: 2952Reputation: 2952Reputation: 2952Reputation: 2952Reputation: 2952Reputation: 2952Reputation: 2952Reputation: 2952
Quote:
Originally Posted by edeamat View Post
is it possible to download rpm and upgrade version to my Red Hat without connect to the register server
As you are well aware aware accessing the Red Hat Network requires an account and that accessing software updates via RHN requires a subscription.
Asking for ways to circumvent that is unlawful, unethical and against the LQ Rules.
Do not ever try that again.
Thread closed.
 
  


Closed Thread

Tags
heap, overflow, samba, security


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Regarding the heap. Zssfssz Programming 5 11-08-2011 04:46 PM
Heap overflow:.. primenu Programming 8 02-01-2010 05:30 PM
Heap of Problems puesdo Linux - Newbie 1 07-25-2009 11:39 AM
apache2 heap overflow error ? jalfaro Linux - Software 0 06-29-2006 03:43 PM


All times are GMT -5. The time now is 10:48 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration