Mailinglist Archive: opensuse (1256 mails)

< Previous Next >
[opensuse] Samba Worm Alert!
Hi Folks,

It looks like samba has a remote-root-wormable vulnerability, present in all
versions for the past seven years.

https://arstechnica.com/security/2017/05/a-wormable-code-execution-bug-has-lurked-in-samba-for-7-years-patch-now/

Note that a work-around is setting this in /etc/samba/smb.conf:

nt pipe support = no

Then restart smbd.

While the workaround is fine, what about all those routers and NAS boxes out
there that
will never get updated?

Regards,
Lew


--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
To contact the owner, e-mail: opensuse+owner@xxxxxxxxxxxx

< Previous Next >