Univention Bugzilla – Bug 37734
samba4: Security issue (ES 3.1)
Last modified: 2015-03-04 13:26:22 CET
CVE-2015-0240 A malicious client could send packets that may set up the stack in such a way that the freeing of memory in a subsequent anonymous netlogon packet could allow execution of arbitrary code. This code would execute with root privileges.
Now public: https://www.samba.org/samba/security/CVE-2015-0240
Patches have been integrated. All tests were fine (ucs-test-samba*, joining a Windows 7 client, performing a domain logon).
Verified: * Package built in extsec3.1 with upstream patch * Package update * Windows7 Client join, ddns update, Logon, PW-Change, Re-logon, DRS-Replication, UCS Memberserver kerberos auth
These have been released.