Red Hat Bugzilla – Bug 198297
CVE-2006-3403 Samba denial of service
Last modified: 2007-11-30 17:11:37 EST
+++ This bug was initially created as a clone of Bug #197836 +++
Samba denial of service
Upstream alerted us to a denial of service bug in Samba.
Here is the description from the mail:
We've got a small anonymous DoS against Samba 3.0.1 - 3.0.22
inclusive. The bug is caused by continually increasing
the size of an array which maintains state information about
the number of active share connections. The result is that
an attacker could cause a single smbd to bloat exhausting
the memory on a server.
-- Additional comment from email@example.com on 2006-07-06 14:30 EST --
Created an attachment (id=132013)
Patch from upstream
-- Additional comment from firstname.lastname@example.org on 2006-07-10 17:18 EST --
samba-3.0.23-1.fc4 has been pushed for fc4, which should resolve this issue. If these problems are still present in this version, then please make note of it in this bug report.