enterprise-support team mailing list archive

Thread
Date

[Bug 978458] Re: CVE-2012-1182: "root" credential remote code execution

To: enterprise-support@xxxxxxxxxxxxxxxxxxx
From: Launchpad Bug Tracker <978458@xxxxxxxxxxxxxxxxxx>
Date: Thu, 12 Apr 2012 23:38:19 -0000
Reply-to: Bug 978458 <978458@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

This bug was fixed in the package samba - 2:3.5.8~dfsg-1ubuntu2.4

---------------
samba (2:3.5.8~dfsg-1ubuntu2.4) natty-security; urgency=low

  * SECURITY UPDATE: Unauthenticated remote code execution via
    RPC calls (LP: #978458)
    - debian/patches/CVE-2012-1182-1.patch: Fix PIDL compiler to generate code
      that uses the same value for array allocation and array length checks.
      Based on upstream patch.
    - debian/patches/CVE-2012-1182-2.patch: Regenerate PIDL generated files with
      the patched PIDL compiler
    - CVE-2012-1182
 -- Tyler Hicks <tyhicks@xxxxxxxxxxxxx>   Thu, 12 Apr 2012 05:28:44 -0500

** Changed in: samba (Ubuntu Lucid)
       Status: In Progress => Fix Released

-- 
You received this bug notification because you are a member of Ubuntu
Server/Client Support Team, which is subscribed to samba in Ubuntu.
Matching subscriptions: Ubuntu Server/Client Support Team
https://bugs.launchpad.net/bugs/978458

Title:
  CVE-2012-1182: "root" credential remote code execution

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/samba/+bug/978458/+subscriptions