Red Hat Product Errata RHSA-2006:0591 - Security Advisory

Issued:: 2006-07-25
Updated:: 2006-07-25

RHSA-2006:0591 - Security Advisory

Overview
Updated Packages

Synopsis

samba security update

Type/Severity

Security Advisory: Important

Topic

Updated samba packages that fix a denial of service vulnerability are now
available.

This update has been rated as having important security impact by the Red
Hat Security Response Team.

Description

Samba provides file and printer sharing services to SMB/CIFS clients.

A denial of service bug was found in the way the smbd daemon tracks active
connections to shares. It was possible for a remote attacker to cause the
smbd daemon to consume a large amount of system memory by sending carefully
crafted smb requests. (CVE-2006-3403)

Users of Samba are advised to upgrade to these packages, which
contain a backported patch to correct this issue.

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

This update is available via Red Hat Network. To use Red Hat Network,
launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate
RPMs being upgraded on your system.

Affected Products

Red Hat Enterprise Linux Server 4 x86_64
Red Hat Enterprise Linux Server 4 ia64
Red Hat Enterprise Linux Server 4 i386
Red Hat Enterprise Linux Server 3 x86_64
Red Hat Enterprise Linux Server 3 ia64
Red Hat Enterprise Linux Server 3 i386
Red Hat Enterprise Linux Server 2 ia64
Red Hat Enterprise Linux Server 2 i386
Red Hat Enterprise Linux Workstation 4 x86_64
Red Hat Enterprise Linux Workstation 4 ia64
Red Hat Enterprise Linux Workstation 4 i386
Red Hat Enterprise Linux Workstation 3 x86_64
Red Hat Enterprise Linux Workstation 3 ia64
Red Hat Enterprise Linux Workstation 3 i386
Red Hat Enterprise Linux Workstation 2 ia64
Red Hat Enterprise Linux Workstation 2 i386
Red Hat Enterprise Linux Desktop 4 x86_64
Red Hat Enterprise Linux Desktop 4 i386
Red Hat Enterprise Linux Desktop 3 x86_64
Red Hat Enterprise Linux Desktop 3 i386
Red Hat Enterprise Linux for IBM z Systems 4 s390x
Red Hat Enterprise Linux for IBM z Systems 4 s390
Red Hat Enterprise Linux for IBM z Systems 3 s390x
Red Hat Enterprise Linux for IBM z Systems 3 s390
Red Hat Enterprise Linux for Power, big endian 4 ppc
Red Hat Enterprise Linux for Power, big endian 3 ppc

Fixes

BZ - 197836 - CVE-2006-3403 Samba denial of service

CVEs

CVE-2006-3403

References

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server 4

SRPM
x86_64
samba-3.0.10-1.4E.6.2.x86_64.rpm	SHA-256: f4b2404eafa80bae642c0b6f1f9ae22b247e42c5d87a2ff58e7a9eb1d00ab7c9
samba-3.0.10-1.4E.6.2.x86_64.rpm	SHA-256: f4b2404eafa80bae642c0b6f1f9ae22b247e42c5d87a2ff58e7a9eb1d00ab7c9
samba-client-3.0.10-1.4E.6.2.x86_64.rpm	SHA-256: 65f1871283d6dd151b655c6fed5e9dc0b51ab301a0a99b858a521e1d12a57275
samba-client-3.0.10-1.4E.6.2.x86_64.rpm	SHA-256: 65f1871283d6dd151b655c6fed5e9dc0b51ab301a0a99b858a521e1d12a57275
samba-common-3.0.10-1.4E.6.2.i386.rpm	SHA-256: 57247b543964083c12a87603d6c0f25c33e67ed9ece904138cda55b82fc54b08
samba-common-3.0.10-1.4E.6.2.i386.rpm	SHA-256: 57247b543964083c12a87603d6c0f25c33e67ed9ece904138cda55b82fc54b08
samba-common-3.0.10-1.4E.6.2.x86_64.rpm	SHA-256: fa751054ec80e863c758e3f988849f6f2dbbb84d3c2f400665f3a24ddea9c830
samba-common-3.0.10-1.4E.6.2.x86_64.rpm	SHA-256: fa751054ec80e863c758e3f988849f6f2dbbb84d3c2f400665f3a24ddea9c830
samba-swat-3.0.10-1.4E.6.2.x86_64.rpm	SHA-256: a87fd7cf812da9558053ae87022411a079b4eed6dd9df89b233409954fb97b96
samba-swat-3.0.10-1.4E.6.2.x86_64.rpm	SHA-256: a87fd7cf812da9558053ae87022411a079b4eed6dd9df89b233409954fb97b96
ia64
samba-3.0.10-1.4E.6.2.ia64.rpm	SHA-256: e0477181e1e426289647a0ffecef014ffc8b79d28bbff733ecca1a0cc81cf3cb
samba-3.0.10-1.4E.6.2.ia64.rpm	SHA-256: e0477181e1e426289647a0ffecef014ffc8b79d28bbff733ecca1a0cc81cf3cb
samba-client-3.0.10-1.4E.6.2.ia64.rpm	SHA-256: 7067ba1d8467184f1a55d688e89e3714616948af71427a8448aa3b4bc6d82760
samba-client-3.0.10-1.4E.6.2.ia64.rpm	SHA-256: 7067ba1d8467184f1a55d688e89e3714616948af71427a8448aa3b4bc6d82760
samba-common-3.0.10-1.4E.6.2.i386.rpm	SHA-256: 57247b543964083c12a87603d6c0f25c33e67ed9ece904138cda55b82fc54b08
samba-common-3.0.10-1.4E.6.2.i386.rpm	SHA-256: 57247b543964083c12a87603d6c0f25c33e67ed9ece904138cda55b82fc54b08
samba-common-3.0.10-1.4E.6.2.ia64.rpm	SHA-256: 05d9efb893f91e85c8a27646dbc96feaff27ca2021cc8b5b6fa412b644574efe
samba-common-3.0.10-1.4E.6.2.ia64.rpm	SHA-256: 05d9efb893f91e85c8a27646dbc96feaff27ca2021cc8b5b6fa412b644574efe
samba-swat-3.0.10-1.4E.6.2.ia64.rpm	SHA-256: df2f720e2684845a4ff24a7754ebc34577c80932dd1a7d47ccbd8733aa6b60bc
samba-swat-3.0.10-1.4E.6.2.ia64.rpm	SHA-256: df2f720e2684845a4ff24a7754ebc34577c80932dd1a7d47ccbd8733aa6b60bc
i386
samba-3.0.10-1.4E.6.2.i386.rpm	SHA-256: 9a57634be6e1dccd0742a554b1bddccd2a2a0a642e274b1646d01ff1e6f538fc
samba-3.0.10-1.4E.6.2.i386.rpm	SHA-256: 9a57634be6e1dccd0742a554b1bddccd2a2a0a642e274b1646d01ff1e6f538fc
samba-client-3.0.10-1.4E.6.2.i386.rpm	SHA-256: 15e45af725584e29f6f550efced2fa4e21c72ec60a852d83a61a19bf938fef3f
samba-client-3.0.10-1.4E.6.2.i386.rpm	SHA-256: 15e45af725584e29f6f550efced2fa4e21c72ec60a852d83a61a19bf938fef3f
samba-common-3.0.10-1.4E.6.2.i386.rpm	SHA-256: 57247b543964083c12a87603d6c0f25c33e67ed9ece904138cda55b82fc54b08
samba-common-3.0.10-1.4E.6.2.i386.rpm	SHA-256: 57247b543964083c12a87603d6c0f25c33e67ed9ece904138cda55b82fc54b08
samba-swat-3.0.10-1.4E.6.2.i386.rpm	SHA-256: d7d792fd9fd84505ab624c03caf49357c5d775c44157ecd851e626246b8a8283
samba-swat-3.0.10-1.4E.6.2.i386.rpm	SHA-256: d7d792fd9fd84505ab624c03caf49357c5d775c44157ecd851e626246b8a8283

Red Hat Enterprise Linux Workstation 4

SRPM
x86_64
samba-3.0.10-1.4E.6.2.x86_64.rpm	SHA-256: f4b2404eafa80bae642c0b6f1f9ae22b247e42c5d87a2ff58e7a9eb1d00ab7c9
samba-client-3.0.10-1.4E.6.2.x86_64.rpm	SHA-256: 65f1871283d6dd151b655c6fed5e9dc0b51ab301a0a99b858a521e1d12a57275
samba-common-3.0.10-1.4E.6.2.i386.rpm	SHA-256: 57247b543964083c12a87603d6c0f25c33e67ed9ece904138cda55b82fc54b08
samba-common-3.0.10-1.4E.6.2.x86_64.rpm	SHA-256: fa751054ec80e863c758e3f988849f6f2dbbb84d3c2f400665f3a24ddea9c830
samba-swat-3.0.10-1.4E.6.2.x86_64.rpm	SHA-256: a87fd7cf812da9558053ae87022411a079b4eed6dd9df89b233409954fb97b96
ia64
samba-3.0.10-1.4E.6.2.ia64.rpm	SHA-256: e0477181e1e426289647a0ffecef014ffc8b79d28bbff733ecca1a0cc81cf3cb
samba-client-3.0.10-1.4E.6.2.ia64.rpm	SHA-256: 7067ba1d8467184f1a55d688e89e3714616948af71427a8448aa3b4bc6d82760
samba-common-3.0.10-1.4E.6.2.i386.rpm	SHA-256: 57247b543964083c12a87603d6c0f25c33e67ed9ece904138cda55b82fc54b08
samba-common-3.0.10-1.4E.6.2.ia64.rpm	SHA-256: 05d9efb893f91e85c8a27646dbc96feaff27ca2021cc8b5b6fa412b644574efe
samba-swat-3.0.10-1.4E.6.2.ia64.rpm	SHA-256: df2f720e2684845a4ff24a7754ebc34577c80932dd1a7d47ccbd8733aa6b60bc
i386
samba-3.0.10-1.4E.6.2.i386.rpm	SHA-256: 9a57634be6e1dccd0742a554b1bddccd2a2a0a642e274b1646d01ff1e6f538fc
samba-client-3.0.10-1.4E.6.2.i386.rpm	SHA-256: 15e45af725584e29f6f550efced2fa4e21c72ec60a852d83a61a19bf938fef3f
samba-common-3.0.10-1.4E.6.2.i386.rpm	SHA-256: 57247b543964083c12a87603d6c0f25c33e67ed9ece904138cda55b82fc54b08
samba-swat-3.0.10-1.4E.6.2.i386.rpm	SHA-256: d7d792fd9fd84505ab624c03caf49357c5d775c44157ecd851e626246b8a8283

Red Hat Enterprise Linux Desktop 4

SRPM
x86_64
samba-3.0.10-1.4E.6.2.x86_64.rpm	SHA-256: f4b2404eafa80bae642c0b6f1f9ae22b247e42c5d87a2ff58e7a9eb1d00ab7c9
samba-client-3.0.10-1.4E.6.2.x86_64.rpm	SHA-256: 65f1871283d6dd151b655c6fed5e9dc0b51ab301a0a99b858a521e1d12a57275
samba-common-3.0.10-1.4E.6.2.i386.rpm	SHA-256: 57247b543964083c12a87603d6c0f25c33e67ed9ece904138cda55b82fc54b08
samba-common-3.0.10-1.4E.6.2.x86_64.rpm	SHA-256: fa751054ec80e863c758e3f988849f6f2dbbb84d3c2f400665f3a24ddea9c830
samba-swat-3.0.10-1.4E.6.2.x86_64.rpm	SHA-256: a87fd7cf812da9558053ae87022411a079b4eed6dd9df89b233409954fb97b96
i386
samba-3.0.10-1.4E.6.2.i386.rpm	SHA-256: 9a57634be6e1dccd0742a554b1bddccd2a2a0a642e274b1646d01ff1e6f538fc
samba-client-3.0.10-1.4E.6.2.i386.rpm	SHA-256: 15e45af725584e29f6f550efced2fa4e21c72ec60a852d83a61a19bf938fef3f
samba-common-3.0.10-1.4E.6.2.i386.rpm	SHA-256: 57247b543964083c12a87603d6c0f25c33e67ed9ece904138cda55b82fc54b08
samba-swat-3.0.10-1.4E.6.2.i386.rpm	SHA-256: d7d792fd9fd84505ab624c03caf49357c5d775c44157ecd851e626246b8a8283

Red Hat Enterprise Linux for IBM z Systems 4

SRPM
s390x
samba-3.0.10-1.4E.6.2.s390x.rpm	SHA-256: 5668bcf313da923eb12145a76be05af8feedf4769b3de73bf26168b9be353d3b
samba-client-3.0.10-1.4E.6.2.s390x.rpm	SHA-256: cc5359f0784681ff3a810016adeb0914a21aacfffaf0b8d69e77c3269ceca39d
samba-common-3.0.10-1.4E.6.2.s390.rpm	SHA-256: 7852a74c9ec7c0b755f4bebd0769352de0faae0ef6ce373a669fcc07b46515bc
samba-common-3.0.10-1.4E.6.2.s390x.rpm	SHA-256: 0bb6a20543453f8059351175ce1526dc6e8cbbe8e2411b530061296ccf62c0f5
samba-swat-3.0.10-1.4E.6.2.s390x.rpm	SHA-256: d76938fb77db0941119f978de3dac9553a379a433fbfaa4336bb87b357134012
s390
samba-3.0.10-1.4E.6.2.s390.rpm	SHA-256: 287fd6b81eae827231b737c9ce91c9178cc88e35f2aa349bb52a1a5c2936c6cc
samba-client-3.0.10-1.4E.6.2.s390.rpm	SHA-256: ed2e0ede319a0de5b1d2b7ab5d569b600c142e0e83e1437c3c973729da781831
samba-common-3.0.10-1.4E.6.2.s390.rpm	SHA-256: 7852a74c9ec7c0b755f4bebd0769352de0faae0ef6ce373a669fcc07b46515bc
samba-swat-3.0.10-1.4E.6.2.s390.rpm	SHA-256: 30f613333bed8efcf42a5ce2829773fb1b8fe96115188c21abd194e2559dd1a0

Red Hat Enterprise Linux for Power, big endian 4

SRPM
ppc
samba-3.0.10-1.4E.6.2.ppc.rpm	SHA-256: 856fffdf2d146dcacca0216a40906399cdc5669c7efa0cf6c8d484ea9b41c57b
samba-client-3.0.10-1.4E.6.2.ppc.rpm	SHA-256: 49adc01558d06fc49858da65bdd339fcd5bdb41924a2d5b12b456692f42fb031
samba-common-3.0.10-1.4E.6.2.ppc.rpm	SHA-256: db31dd0e7a07cbb2095590ef93a08da7d9650de0761711ffdf218af497de2020
samba-common-3.0.10-1.4E.6.2.ppc64.rpm	SHA-256: b72c13073b522f1bb9cea17da260697bdf0f0947edc27385f6afdeec9b91ab34
samba-swat-3.0.10-1.4E.6.2.ppc.rpm	SHA-256: b75b7dfd9b10ecb9dd4e85b4876ea796b6c2dd44d243682435b0f2ddf4bc5ad9

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Log in to Your Red Hat Account

Red Hat Account

Customer Portal

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

JBoss Development and Management

JBoss Integration and Automation

Mobile

Services

Tools

Red Hat Product Security Center

Security Updates

Resources

Customer Portal Community

Customer Events

Stories