#priv: March 2010

Monday, March 1, 2010

debian samba vulns

Two local vulnerabilities have been discovered in samba, a SMB/CIFS file,
print, and login server for Unix. The Common  Vulnerabilities and
Exposures project identifies the following problems:

CVE-2009-3297

   Ronald Volgers discovered that a race condition in mount.cifs
   allows local users to mount remote filesystems over arbitrary
   mount points.

CVE-2010-0547

   Jeff Layton discovered that missing input sanitising in mount.cifs
   allows denial of service by corrupting /etc/mtab.

For the stable distribution (lenny), these problems have been fixed in
version 2:3.2.5-4lenny9.

For the unstable distribution (sid), these problems have been fixed in
version 2:3.4.5~dfsg-2.

#priv

search PRIV & ALL sites linked here

Monday, March 1, 2010

debian samba vulns

Videoz

Newz

Cheat Sheetz

Twitter InfoSec Listz

Zines

Archivez

SecurityNewsPortal.com latest breaking computer security, virus and hacking news

Daily Dave (dailydave) Mailing List

SecDocs Feed

SANS Information Security Reading Room

Packet Storm ≈ Full Disclosure Information Security

Coresec.org - Information Security Blog

Cyber Risk Reports

Full Disclosure (fulldisclosure) Mailing List

Dissecting The Hack

Hack a Day

Bugtraq

LinKz++

Blog Archive