[manjaro-security] [MSA-201705-1] samba: code execution vulnerability
philm at manjaro.org
Fri May 26 00:42:34 CEST 2017
Manjaro Linux Security Advisory MSA-201705-1
Date : 2017-05-26
CVE-ID : CVE-2017-7494
Package : samba
Type : code execution vulnerability
Remote : Yes
Link : https://www.samba.org/samba/security/CVE-2017-7494.html
Malicious clients can upload and cause the smbd server to execute a
shared library from a writable share.
Upgrade to 4.5.10-0.
# pacman -Syu "samba>=4.5.10-0"
The problem has been fixed upstream in version 4.5.10.
But if you can not upgrade to the latest versions of Samba immediately,
you can work around the vulnerability by adding the following line to
your Samba configuration file smb.conf:
nt pipe support = no
All versions of Samba from 3.5.0 onwards are vulnerable to a remote
code execution vulnerability, allowing a malicious client to upload a
shared library to a writable share, and then cause the server to load
and execute it.
A local unprivileged attacker is able to overwrite arbitrary files on
the filesystem possibly leading to privilege escalation.
More information about the manjaro-security