MDKSA-2007:042

Package name

smb4k

Date

2007-02-12

Advisory ID

MDKSA-2007:042

Affected versions

2007.0 x86_64 , 2007.0 i586

Problem description

Kees Cook performed an audit on the Smb4K program and discovered a
number of vulnerabilities and security weaknesses that have been
addressed and corrected in Smb4K 0.8.0 which is being provided with
this update.

Updated packages

2007.0 x86_64

 b7085b96bfaa3dc14ad7b9274bad2166  2007.0/x86_64/lib64smb4k0-0.8.0-1.1mdv2007.0.x86_64.rpm
 ae3fcd1dc5cc1a3a70d4ccb30ae6d025  2007.0/x86_64/lib64smb4k0-devel-0.8.0-1.1mdv2007.0.x86_64.rpm
 d8d64749ed12c54c9ca9fd6090f0a292  2007.0/x86_64/smb4k-0.8.0-1.1mdv2007.0.x86_64.rpm 
 35a1749a46125e8b1ccfc7e729f9ae03  2007.0/SRPMS/smb4k-0.8.0-1.1mdv2007.0.src.rpm

2007.0 i586

 b2cd743c9cfbe504e8c2a6814d2b8a52  2007.0/i586/libsmb4k0-0.8.0-1.1mdv2007.0.i586.rpm
 b129dc1aa5e906e984c46e1a0863a0a6  2007.0/i586/libsmb4k0-devel-0.8.0-1.1mdv2007.0.i586.rpm
 6e64f5017bb92379ffc90b4b77bad357  2007.0/i586/smb4k-0.8.0-1.1mdv2007.0.i586.rpm 
 35a1749a46125e8b1ccfc7e729f9ae03  2007.0/SRPMS/smb4k-0.8.0-1.1mdv2007.0.src.rpm

References

• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0472
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0473
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0474
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0475
• https://lists.berlios.de/pipermail/smb4k-announce/2006-December/000037.html