See https://www.samba.org/samba/security/CVE-2012-1182
If you're using Samba outside your house or office where you can see everyone, you might want to disable it until this is patched in the repos.
Am 10.04.2012 23:59, schrieb Steven Stern:
See https://www.samba.org/samba/security/CVE-2012-1182
If you're using Samba outside your house or office where you can see everyone, you might want to disable it until this is patched in the repos.
did you made a bugreport and/or send this to devel-list? on fileservers disable samba is not really a option :-)
On 04/10/2012 03:54 PM, Reindl Harald wrote:
did you made a bugreport and/or send this to devel-list? on fileservers disable samba is not really a option :-)
Agreed. However, if you have control over all of the machines connecting to those servers you're probably not risking that much. If I read the advisory correctly the problem is that outside machines can use samba to get root access. Internal machines should be safe as long as your good about keeping them updated and don't let them run anything you haven't checked out.
-
Joe Zeff -
Reindl Harald -
SternData