GLSA-200412-13 : Samba: Integer overflow
Critical Nessus Plugin ID 15997
SynopsisThe remote Gentoo host is missing one or more security-related patches.
DescriptionThe remote host is affected by the vulnerability described in GLSA-200412-13 (Samba: Integer overflow)
Samba contains a bug when unmarshalling specific MS-RPC requests from clients.
A remote attacker may be able to execute arbitrary code with the permissions of the user running Samba, which could be the root user.
There is no known workaround at this time.
SolutionAll samba users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose '>=net-fs/samba-3.0.9-r1'