FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Samba -- Denial of service - memory corruption

Affected packages
3.4.* < samba34 < 3.4.12
3.5.* < samba35 < 3.5.7

Details

VuXML ID bfdbc7ec-9c3f-11e0-9bec-6c626dd55a41
Discovery 2011-02-28
Entry 2011-06-21

The Samba team reports:

Samba is vulnerable to a denial of service, caused by a memory corruption error related to missing range checks on file descriptors being used in the "FD_SET" macro. By performing a select on a bad file descriptor set, a remote attacker could exploit this vulnerability to cause the application to crash or possibly execute arbitrary code on the system.

[source]

References

CVE Name CVE-2011-0719
URL http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0719
URL http://www.samba.org/samba/security/CVE-2011-0719.html

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.