FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Samba -- Denial of service - memory corruption

Affected packages
3.4.* < samba34 < 3.4.12
3.5.* < samba35 < 3.5.7


VuXML ID bfdbc7ec-9c3f-11e0-9bec-6c626dd55a41
Discovery 2011-02-28
Entry 2011-06-21

The Samba team reports:

Samba is vulnerable to a denial of service, caused by a memory corruption error related to missing range checks on file descriptors being used in the "FD_SET" macro. By performing a select on a bad file descriptor set, a remote attacker could exploit this vulnerability to cause the application to crash or possibly execute arbitrary code on the system.


CVE Name CVE-2011-0719