Mandriva Linux Security Advisory : samba (MDVSA-2008:108)
High Nessus Plugin ID 36348
SynopsisThe remote Mandriva Linux host is missing one or more security updates.
DescriptionSecunia Research has discovered a vulnerability in Samba, which can be exploited by malicious people to compromise a vulnerable system. A boundary error within the receive_smb_raw() function in lib/util_sock.c can be exploited to cause a heap-based buffer overflow via an overly large SMB packet received in a client context.
The updated packages have been patched to fix the issue.
SolutionUpdate the affected packages.