1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
|
PublicDateAtUSN: 2011-04-09
Candidate: CVE-2011-1678
PublicDate: 2011-04-09
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1678
http://www.ubuntu.com/usn/usn-1226-1
http://www.ubuntu.com/usn/usn-1226-2
Description:
smbfs in Samba 3.5.8 and earlier attempts to use (1) mount.cifs to append
to the /etc/mtab file and (2) umount.cifs to append to the /etc/mtab.tmp
file without first checking whether resource limits would interfere, which
allows local users to trigger corruption of the /etc/mtab file via a
process with a small RLIMIT_FSIZE value, a related issue to CVE-2011-1089.
Ubuntu-Description:
Notes:
mdeslaur> we ship this suid by default, so this is medium
mdeslaur> hardy needs to get mtab lock file support backported
mdeslaur> http://git.samba.org/?p=samba.git;a=commit;h=32695912dd3ed7c02da68209328d630c89d395ba
Bugs:
Priority: medium
Discovered-by: Dan Rosenberg
Assigned-to:
Patches_cifs-utils:
upstream: http://git.samba.org/?p=cifs-utils.git;a=commitdiff;h=f6eae44a3d05b6515a59651e6bed8b6dde689aec
upstream_cifs-utils: needs-triage
dapper_cifs-utils: DNE
hardy_cifs-utils: DNE
karmic_cifs-utils: DNE
lucid_cifs-utils: DNE
maverick_cifs-utils: released (2:4.5-2ubuntu0.10.10.1)
natty_cifs-utils: released (2:4.5-2ubuntu0.11.04.1)
devel_cifs-utils: released (5.0-1ubuntu2)
Patches_samba:
upstream: http://git.samba.org/?p=cifs-utils.git;a=commitdiff;h=f6eae44a3d05b6515a59651e6bed8b6dde689aec
upstream_samba: needs-triage
dapper_samba: ignored (reached end-of-life)
hardy_samba: released (3.0.28a-1ubuntu4.16)
karmic_samba: ignored (reached end-of-life)
lucid_samba: released (2:3.4.7~dfsg-1ubuntu3.8)
maverick_samba: not-affected (moved to cifs-utils)
natty_samba: not-affected (moved to cifs-utils)
devel_samba: not-affected (moved to cifs-utils)
|