Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 310105 (CVE-2010-0728) - <net-fs/samba-3.4.7: allows remote authenticated users to bypass intended file permissions (CVE-2010-0728)
Summary: <net-fs/samba-3.4.7: allows remote authenticated users to bypass intended fil...
Status: RESOLVED FIXED
Alias: CVE-2010-0728
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: High normal (vote)
Assignee: Gentoo Security
URL: http://secunia.com/advisories/cve_ref...
Whiteboard: B4 [glsa]
Keywords:
Depends on:
Blocks:
 
Reported: 2010-03-18 16:11 UTC by Andreis Vinogradovs ( slepnoga )
Modified: 2012-06-24 13:05 UTC (History)
0 users

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Andreis Vinogradovs ( slepnoga ) 2010-03-18 16:11:37 UTC 
smbd in Samba 3.3.11, 3.4.6, and 3.5.0, when libcap support is enabled, runs with the CAP_DAC_OVERRIDE capability, which allows remote authenticated users to bypass intended file permissions via standard filesystem operations with any client. 

See: https://bugzilla.samba.org/show_bug.cgi?id=7222#c15
Comment 1 Stefan Behte (RETIRED) gentoo-dev Security 2010-04-06 04:04:47 UTC 
CVE-2010-0728 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-0728):
  smbd in Samba 3.3.11, 3.4.6, and 3.5.0, when libcap support is
  enabled, runs with the CAP_DAC_OVERRIDE capability, which allows
  remote authenticated users to bypass intended file permissions via
  standard filesystem operations with any client.
Comment 2 Stefan Behte (RETIRED) gentoo-dev Security 2010-04-11 14:02:31 UTC 
CVE-2010-0728 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-0728):
  smbd in Samba 3.3.11, 3.4.6, and 3.5.0, when libcap support is
  enabled, runs with the CAP_DAC_OVERRIDE capability, which allows
  remote authenticated users to bypass intended file permissions via
  standard filesystem operations with any client.
Comment 3 Tim Sammut (RETIRED) gentoo-dev 2010-11-22 04:50:30 UTC 
http://www.samba.org/samba/security/CVE-2010-0728

=net-fs/samba-3.4.9 is fixed and currently the only stable version in the tree. I rate this a B4, so it requires a vote.

GLSA Vote: Yes.
Comment 4 Stefan Behte (RETIRED) gentoo-dev Security 2011-02-23 23:06:26 UTC 
Added to pending GLSA.
Comment 5 GLSAMaker/CVETool Bot gentoo-dev 2012-06-24 13:05:01 UTC 
This issue was resolved and addressed in
 GLSA 201206-22 at http://security.gentoo.org/glsa/glsa-201206-22.xml
by GLSA coordinator Sean Amoss (ackle).