On mySimon: Pride and Prejudice and Zombies
BNET Business Network:
BNET
TechRepublic
ZDNet
35 TalkBacks

By Robert Lemos
Posted on ZDNet News: Sep 14, 2004 9:52:00 PM

The Samba Team released on Tuesday a patch to fix two flaws that could result in disruptions for networks using the widely installed Unix and Linux software.

The two relatively minor flaws could crash or make unresponsive systems running version 3 of Samba, an open-source software package that allows Windows files and printers to be shared by Unix and Linux systems.

The flaws, known as denial-of-service vulnerabilities, basically could be used to disconnect Samba servers from the network by either overrunning the computer's memory to such an extent that it cannot function or by sending a specially crafted network request that would crash the NetBIOS function.

"We have not had any reports in the wild of these" flaws being used by attackers, said Gerald Carter, a member of the Samba Team.

The Samba open-source software project has had its share of flaws since version 3.0 was published a year ago, including two vulnerabilities announced in July and another vulnerability reported in February. The current release, 3.0.7, fixes the two denial-of-service issues. The flaws do not affect versions of the software prior to 3.0.

Security information provider Secunia rated the flaws "less critical," that company's second-lowest grading of threats.

SponsoredWhite Papers, Webcasts, and Downloads

  • Talkback
  • Most Recent of 35 Talkback(s)
Thank goodness Apple servers are the future
and providing rock solid performance today. Silly Samba, dance you way back to the wall flower. (Read the rest)
Posted by: FilledOut Posted on: 09/16/04 You are currently: a Guest | | Terms of Use
Patchs for everyone!  No_Ax_to_Grind | 09/14/04
And no OS upgrade required either!  Zogg | 09/14/04
Haha...Yes, pretty much.  Linux_Developer | 09/14/04
I got a Samba server.  doe_z | 09/14/04
It would appear...  Fred Fredrickson | 09/14/04
Point taken  Michael Kelly | 09/15/04
I had these patches installed yesterday...  ickusslime@... | 09/14/04
Samba servers vulnerable to denial-of-service attacks  Loverock Davidson | 09/14/04
Hello! Clue for the moron  Linux User 147560 | 09/14/04
Clue for you  balsover | 09/14/04
It includes Loverock.  Linux_Developer | 09/15/04
Him? BSD?  balsover | 09/15/04
Him? BSD?  Loverock Davidson | 09/15/04
So you use SFU (Services For Unix)?  B.O.F.H. | 09/15/04
so he claims...  ryusen | 09/15/04
Ha! But don't worry, Loverock. The flaw isn't very serious. (NT)  Linux_Developer | 09/15/04
Clue for the moron? Must be for you then.  Loverock Davidson | 09/15/04
Re: Linux is so secure  Linux_Developer | 09/15/04
The fact of the matter is  balsover | 09/14/04
Nah, it barely registers.  doe_z | 09/15/04
Nah, it barely registers.  Loverock Davidson | 09/15/04
But it's not a Linux / OS  Linux User 147560 | 09/15/04
It is  Loverock Davidson | 09/15/04
First some facts  Linux User 147560 | 09/15/04
OS vs app flaws.  The King's Servant | 09/15/04
YOu really don't know jack about Unix, Linux or BSD, do you?  B.O.F.H. | 09/15/04
Ho Hum  Loverock Davidson | 09/15/04
You really need to learn how to spell  AmusedAtItAll | 09/15/04
You really need to learn how to spell  Loverock Davidson | 09/15/04
Hey, FreeBSD fanboy!  The King's Servant | 09/15/04
SaMBa runs on BSD!  B.O.F.H. | 09/15/04
Whew, patched already.. back to helping all the silly Windows users  Xunil_Sierutuf | 09/15/04
Helping yourself are you?  No_Ax_to_Grind | 09/15/04
I am sure he can help you next!  B.O.F.H. | 09/15/04
Thank goodness Apple servers are the future  FilledOut | 09/16/04

What do you think?

advertisement
advertisement
Click Here

White Papers, Webcasts, and Downloads

  • Smart Tech Expert advice on innovations in healthcare and the green technologies that make it happen. Find out more
  • Smart Business Discussion and advice on management issues that revolve around making your world smarter and more useful. More Smart Advice
  • Smart People The best and worst moves in the management and strategy trenches. Learn More