Wind River Support Network

HomeDefectsLIN6-14375
Fixed

LIN6-14375 : Security Advisory - samba - CVE-2018-1050

Created: Mar 15, 2018    Updated: Dec 3, 2018
Resolved Date: Jun 7, 2018
Found In Version: 6.0.0.36
Fix Version: 6.0.0.37
Severity: Standard
Applicable for: Wind River Linux 6
Component/s: Userspace

Description

All versions of Samba from 4.0.0 onwards are vulnerable to a denial of service attack when the RPC spoolss service is configured to be run as an external daemon. Missing input sanitization checks on some of the input parameters to spoolss RPC calls could cause the print spooler service to crash.

https://nvd.nist.gov/vuln/detail/CVE-2018-1050

Other Downloads


Live chat
Online