[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

UNIRAS Brief - 495/04 - Gentoo Linux Security Advisory [ERRATA UPDATE] GLSA 200409-14:02

To: <uniras@xxxxxxxxxxxx>
Subject: UNIRAS Brief - 495/04 - Gentoo Linux Security Advisory [ERRATA UPDATE] GLSA 200409-14:02
From: "UNIRAS \(HM Govt CERT \(HD\)\)" <uniras@xxxxxxxxxxxx>
Date: Mon, 13 Sep 2004 11:47:40 +0100
Cc: <interim@xxxxxxxxxxxxxxxxxx>
Delivered-to: mailing list interim@xxxxxxxxxxxxxxxxxx
Delivered-to: moderator for interim@xxxxxxxxxxxxxxxxxx
Importance: Normal
List-help: <mailto:interim-help@lists.niscc.gov.uk>
List-post: <mailto:interim@lists.niscc.gov.uk>
List-subscribe: <mailto:interim-subscribe@lists.niscc.gov.uk>
List-unsubscribe: <mailto:interim-unsubscribe@lists.niscc.gov.uk>
Mailing-list: contact interim-help@xxxxxxxxxxxxxxxxxx; run by ezmlm
Organization: Niscc
Reply-to: <uniras@xxxxxxxxxxxx>

 
-----BEGIN PGP SIGNED MESSAGE-----

- ----------------------------------------------------------------------------------
   UNIRAS (UK Govt CERT) Briefing Notice - 495/04 dated 13.09.04  Time: 10:50  
  UNIRAS is part of NISCC (National Infrastructure Security Co-ordination Centre)
- ---------------------------------------------------------------------------------- 
  UNIRAS material is also available from its website at www.uniras.gov.uk and
         Information about NISCC is available from www.niscc.gov.uk
- ----------------------------------------------------------------------------------

Title
=====

Gentoo Linux Security Advisory [ERRATA UPDATE]        GLSA 200409-14:02


Detail
====== 

This advisory incorrectly described Samba versions as being vulnerable to a remote
denial of service. After further verifications, it appears that a remote user can 
only deny service to himself, so this bug does not induce any security issue at all. 
The corrected sections appear below.



- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory [ERRATA UPDATE]        GLSA 200409-14:02
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
                                            http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

  Severity: Low
     Title: Samba: Remote printing non-vulnerability
      Date: September 10, 2004
      Bugs: #62476
        ID: 200409-14:02

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Errata
======

This advisory incorrectly described Samba versions as being vulnerable to a remote 
denial of service. After further verifications, it appears that a remote user can
only deny service to himself, so this bug does not induce any security issue at all.
The corrected sections appear below.

Synopsis
========

Samba has a bug with out of sequence print change notification requests, but it 
cannot be used to perform a remote denial of service attack.

Affected packages
=================

There are no affected packages.

Description
===========

Due to a bug in the printer_notify_info() function, authorized users could potentially
crash their smbd process by sending improperly handled print change notification 
requests in an invalid order. Windows XP SP2 clients can trigger this behavior by sending a
FindNextPrintChangeNotify() request before previously sending a
FindFirstPrintChangeNotify() request.

Impact
======

We incorrectly thought that this bug could be exploited to deny service to all Samba users. 
It is not the case, this bug has no security impact whatsoever. Many thanks to Jerry Carter 
from the Samba team for correcting our mistake.

Workaround
==========

There is no need for a workaround.

Resolution
==========

Samba users can keep their current versions.

References
==========

  [ 1 ] Samba Release Notes
        http://samba.org/samba/history/samba-3.0.6.html
  [ 2 ] Samba Bug #1520
        https://bugzilla.samba.org/show_bug.cgi?id=1520

Availability
============

This GLSA and any updates to it are available for viewing at the Gentoo Security Website:

  http://security.gentoo.org/glsa/glsa-200409-14.xml

Concerns?
=========

Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of
our users machines is of utmost importance to us. Any security concerns should be addressed 
to security@xxxxxxxxxx or alternatively, you may file a bug at http://bugs.gentoo.org.

License
=======

Copyright 2004 Gentoo Foundation, Inc; referenced text
belongs to its owner(s).

The contents of this document are licensed under the
Creative Commons - Attribution / Share Alike license.

http://creativecommons.org/licenses/by-sa/1.0
- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFBQZxEzKC5hMHO6rkRAkBgAJwLjo2yVXdSw/JarAQu1braP2go2ACeODSp
jcbJYy36/rPusdMvF8aMWxo=
=J7+u
- -----END PGP SIGNATURE-----



- ----------------------------------------------------------------------------------

For additional information or assistance, please contact the HELP Desk by 
telephone or Not Protectively Marked information may be sent via 
EMail to: uniras@xxxxxxxxxxxx

Office Hours:
Mon - Fri: 08:30 - 17:00 Hrs
Tel: +44 (0) 870 487 0748 Ext 4511
Fax: +44 (0) 870 487 0749

Outside of Office Hours:
On Call Duty Officer:
Tel: +44 (0) 870 487 0748 and follow the prompts

- ----------------------------------------------------------------------------------
UNIRAS wishes to acknowledge the contributions of Gentoo for the information 
contained in this Briefing. 
- ----------------------------------------------------------------------------------
This Briefing contains the information released by the original author. Some 
of the information may have changed since it was released. If the vulnerability 
affects you, it may be prudent to retrieve the advisory from the canonical site 
to ensure that you receive the most current information concerning that problem.

Reference to any specific commercial product, process, or service by trade 
name, trademark manufacturer, or otherwise, does not constitute or imply 
its endorsement, recommendation, or favouring by UNIRAS or NISCC.  The views 
and opinions of authors expressed within this notice shall not be used for 
advertising or product endorsement purposes.

Neither UNIRAS or NISCC shall also accept responsibility for any errors 
or omissions contained within this briefing notice. In particular, they shall 
not be liable for any loss or damage whatsoever, arising from or in connection 
with the usage of information contained within this notice.

UNIRAS is a member of the Forum of Incident Response and Security Teams (FIRST) 
and has contacts with other international Incident Response Teams (IRTs) in 
order to foster cooperation and coordination in incident prevention, to prompt 
rapid reaction to incidents, and to promote information sharing amongst its 
members and the community at large. 
- ----------------------------------------------------------------------------------
<End of UNIRAS Briefing>

-----BEGIN PGP SIGNATURE-----
Version: PGP 8.0

iQCVAwUBQUVslYpao72zK539AQEWTQP/ce6Wf0UrZHlzMJL+juDD8yI7TnlN11Gp
pcfOMasnzXJeE7fnBAAhvM1SslMaE+EsTU/ZSUoXRMdaHsdj1Apj0Fy/sApIEVA4
eCfQQzIasktha5nx50uBjelaQcIF/42K8JRJU1UzYVusscJdF5h+8vcOOGyS0418
/VR3ymrxhfg=
=53nZ
-----END PGP SIGNATURE-----

Prev by Date: UNIRAS Brief - 497/04 - Two Sun Alert Notifications
Next by Date: UNIRAS Brief - 496/04 - Two Conectiva Security Announcements
Previous by thread: UNIRAS Brief - 497/04 - Two Sun Alert Notifications
Next by thread: UNIRAS Brief - 496/04 - Two Conectiva Security Announcements
Index(es):
- Date
- Thread