CVE-2017-9461

Related Files

Red Hat Security Advisory 2017-2778-01

Posted Sep 21, 2017

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2017-2778-01 - Samba is an open-source implementation of the Server Message Block protocol and the related Common Internet File System protocol, which allow PC-compatible machines to share files, printers, and various information. Security Fix: A race condition was found in samba server. A malicious samba client could use this flaw to access files and directories in areas of the server file system not exported under the share definitions.

tags | advisory, protocol

systems | linux, redhat

advisories | CVE-2017-2619, CVE-2017-9461

SHA-256 | 90e4d59d523bfd0324aa344e6329f791d3e861d3915594325338f11b5393a026

Download | Favorite | View

Red Hat Security Advisory 2017-1950-01

Posted Aug 2, 2017

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2017-1950-01 - Samba is an open-source implementation of the Server Message Block protocol and the related Common Internet File System protocol, which allow PC-compatible machines to share files, printers, and various information. The following packages have been upgraded to a later upstream version: samba. Security Fix: A flaw was found in the way Samba handled dangling symlinks. An authenticated malicious Samba client could use this flaw to cause the smbd daemon to enter an infinite loop and use an excessive amount of CPU and memory.

tags | advisory, protocol

systems | linux, redhat

advisories | CVE-2017-9461

SHA-256 | a75e3d5d70ccf16781a3304ff0ebb4b2e93954fdad37652919a225cc3921e465

Download | Favorite | View

Red Hat Security Advisory 2017-2338-01

Posted Aug 1, 2017

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2017-2338-01 - Samba is an open-source implementation of the Server Message Block protocol and the related Common Internet File System protocol, which allow PC-compatible machines to share files, printers, and various information. Security Fix: A race condition was found in samba server. A malicious samba client could use this flaw to access files and directories, in areas of the server file system not exported under the share definitions.

tags | advisory, protocol

systems | linux, redhat

advisories | CVE-2017-2619, CVE-2017-9461

SHA-256 | e2f3c035f6437815bfc98b0e784bab9e8144444eb788738a8a5bebcb101ea653

Download | Favorite | View

Ubuntu Security Notice USN-3348-1

Posted Jul 6, 2017

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3348-1 - It was discovered that Samba incorrectly handled dangling symlinks. A remote attacker could possibly use this issue to cause Samba to hang, resulting in a denial of service. This issue only applied to Ubuntu 14.04 LTS and Ubuntu 16.04 LTS. In addition, this update fixes a regression introduced by USN-3267-1 that caused Samba to incorrectly handle non-wide symlinks to directories.

tags | advisory, remote, denial of service

systems | linux, ubuntu

advisories | CVE-2017-9461

SHA-256 | 17cf083be8a7db836a16947d05cebefa9dbf6406ef22b45553fe1b9760462e74

Download | Favorite | View