Hi all,
Over the weekend (isn't it always :-), someone
on the BugTraq list posted an analysis (not exploit code)
of a potential buffer overrun in Samba, that has been
present in all versions (including 1.9.18p5). As Andrew
Tridgell was working over the weekend he quickly produced
a fix for this (it was a problem with code using sprintf)
and released it as 1.9.18p6 on Sunday, May 11th.
Please note that there is no published root exploit for this
problem, other than a denial of service (which is still very
serious).
Unfortunately, in the haste to fix the problem he used
a non-POSIX api, memalign(), in code to simulate the
snprintf() call that sprintf was replaced with. This and
some of the fix code has caused compile problems on some
UNIX systems.
In order to fix these compile problems on as wide a
range of systems as possible, I'd appreciate it if
people could send me the man pages for the following
functions on their systems.
These functions are :
vsnprintf
getpagesize
sysconf
memalign
mprotect
valloc
People with the following systems need not send man
pages, as the Samba Team already has access to these
and we will check ourselves :
SGI IRIX (all versions).
Sun Solaris (versions 2.4 or above).
Linux (all versions)
FreeBSD (all versions)
When sending the man pages please remember to mention
what system these pages are for : eg. HPUX 10.x, HPUX 9.x
SunOS 4.x etc.
Please send the man pages to samba-bugs@samba.anu.edu.au
Thanks in advance,
Jeremy Allison,
Samba Team.
--
--------------------------------------------------------
Buying an operating system without source is like buying
a self-assembly Space Shuttle with no instructions.
--------------------------------------------------------
