Test ID:	1.3.6.1.4.1.25623.1.0.850289
Category:	SuSE Local Security Checks
Title:	openSUSE: Security Advisory for samba (openSUSE-SU-2012:0508-1)
Summary:	The remote host is missing an update for the 'samba'; package(s) announced via the referenced advisory.
Description:	Summary: The remote host is missing an update for the 'samba' package(s) announced via the referenced advisory. Vulnerability Insight: Samba upgrade to version 3.6.3 fixes the following security issue: - PIDL based autogenerated code allows overwriting beyond of allocated array. Remove attackers could exploit that to execute arbitrary code as root (CVE-2012-1182, bso#8815, bnc#752797) Please see /usr/share/doc/packages/samba/WHATSNEW.txt from the samba-doc package or the package change log (rpm -q - -changelog samba) for more details of the version update. Affected Software/OS: update on openSUSE 11.4 Solution: Please install the updated package(s). CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2012-1182 http://lists.apple.com/archives/security-announce/2012/May/msg00001.html Debian Security Information: DSA-2450 (Google Search) http://www.debian.org/security/2012/dsa-2450 http://lists.fedoraproject.org/pipermail/package-announce/2012-April/078726.html http://lists.fedoraproject.org/pipermail/package-announce/2012-April/078836.html http://lists.fedoraproject.org/pipermail/package-announce/2012-April/078258.html http://lists.fedoraproject.org/pipermail/package-announce/2012-May/080567.html HPdes Security Advisory: HPSBMU02790 http://marc.info/?l=bugtraq&m=133951282306605&w=2 HPdes Security Advisory: HPSBUX02789 http://marc.info/?l=bugtraq&m=134323086902585&w=2 HPdes Security Advisory: SSRT100824 HPdes Security Advisory: SSRT100872 http://www.mandriva.com/security/advisories?name=MDVSA-2012:055 http://www.securitytracker.com/id?1026913 http://secunia.com/advisories/48751 http://secunia.com/advisories/48754 http://secunia.com/advisories/48816 http://secunia.com/advisories/48818 http://secunia.com/advisories/48844 http://secunia.com/advisories/48873 http://secunia.com/advisories/48879 http://secunia.com/advisories/48999 SuSE Security Announcement: SUSE-SU-2012:0501 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00007.html SuSE Security Announcement: SUSE-SU-2012:0502 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00008.html SuSE Security Announcement: SUSE-SU-2012:0504 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00009.html SuSE Security Announcement: SUSE-SU-2012:0515 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00014.html http://www.ubuntu.com/usn/USN-1423-1
Copyright	Copyright (C) 2012 Greenbone Networks GmbH

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.