Issue metadata
Sign in to add a comment
|
CrOS: Vulnerability reported in net-fs/samba |
||||||||||||||||||||||
Issue descriptionAutomated analysis has detected that the following third party packages have had vulnerabilities publicly reported. NOTE: There may be several bugs listed below - in almost all cases, all bugs can be quickly addressed by upgrading to the latest version of the package. Package Name: net-fs/samba Package Version: [cpe:/a:samba:samba:4.5.3] Advisory: CVE-2017-9461 Details: https://vomit.googleplex.com/advisory?id=CVE/CVE-2017-9461 CVSS severity score: 7.8/10.0 Confidence: high Description: smbd in Samba before 4.4.10 and 4.5.x before 4.5.6 has a denial of service vulnerability (fd_open_atomic infinite loop with high CPU usage and memory consumption) due to wrongly handling dangling symlinks.
,
Jun 16 2017
Passing this to the folks who own Samba. Lutz, can you route appropriately?
,
Jun 20 2017
I've uploaded CL:540739.
,
Jun 20 2017
,
Jun 20 2017
AFAIK, we don't consider DoS as security bugs, but I'm not sure about ChromeOS + this is a publicly known CVE. I speculatively assigning Low severity here, but please feel free to re-adjust or remove security flags if it is not needed.
,
Jun 21 2017
,
Jun 22 2017
The following revision refers to this bug: https://chromium.googlesource.com/chromiumos/overlays/chromiumos-overlay/+/26794d56055e3e182375724f331f34c043cd83db commit 26794d56055e3e182375724f331f34c043cd83db Author: Lutz Justen <ljusten@chromium.org> Date: Thu Jun 22 01:48:10 2017 Samba: Apply patch for CVE-2017-9461 See https://bugzilla.samba.org/show_bug.cgi?id=12572 and https://git.samba.org/?p=samba.git;a=commit;h=10c3e3923022485c720f322ca4f0aca5d7501310 for details. The issue probably does not cause any harm to Chrome OS yet since it is a Samba server bug and authpolicy, being the only Samba user so far, only acts as a client. BUG= chromium:734016 TEST=emerge-amd64-generic samba Change-Id: I27d61c78666208abca710f4ee41f711a61051607 Reviewed-on: https://chromium-review.googlesource.com/540739 Commit-Ready: Lutz Justen <ljusten@chromium.org> Tested-by: Lutz Justen <ljusten@chromium.org> Reviewed-by: Jorge Lucangeli Obes <jorgelo@chromium.org> [rename] https://crrev.com/26794d56055e3e182375724f331f34c043cd83db/net-fs/samba/samba-4.5.3-r9.ebuild [modify] https://crrev.com/26794d56055e3e182375724f331f34c043cd83db/net-fs/samba/samba-4.5.3.ebuild [add] https://crrev.com/26794d56055e3e182375724f331f34c043cd83db/net-fs/samba/files/samba-4.5.3-fix_cve_2017_9461.patch
,
Jun 23 2017
,
Jun 23 2017
,
Sep 29 2017
This bug has been closed for more than 14 weeks. Removing security view restrictions. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
,
Jan 22 2018
|
|||||||||||||||||||||||
►
Sign in to add a comment |
|||||||||||||||||||||||
Comment 1 by est...@chromium.org
, Jun 16 2017Status: Assigned (was: Untriaged)