CVE-2008-4314

Publication date 1 December 2008

Last updated 24 July 2024

Ubuntu priority

smbd in Samba 3.0.29 through 3.2.4 might allow remote attackers to read arbitrary memory and cause a denial of service via crafted (1) trans, (2) trans2, and (3) nttrans requests, related to a "cut&paste error" that causes an improper bounds check to be performed.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
samba	8.10 intrepid	Fixed 2:3.2.3-1ubuntu3.3
	8.04 LTS hardy	Not affected
	7.10 gutsy	Not affected
	6.06 LTS dapper	Not affected

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Related Ubuntu Security Notices (USN)

USN-680-1
Samba vulnerability
27 November 2008

Other references

https://www.cve.org/CVERecord?id=CVE-2008-4314