Upstream information
Description
The setup_cifs_sb function in fs/cifs/connect.c in the Linux kernel before 2.6.39 does not properly handle DFS referrals, which allows remote CIFS servers to cause a denial of service (system crash) by placing a referral at the root of a share.NVD CVSS v2 Base Score: 5.4 (AV:N/AC:H/Au:N/C:N/I:N/A:C)
Novell/SUSE information
Novell Bugzilla entry: 718028 SUSE Security Advisories:- SUSE-SA:2011:042, published Fri, 28 Oct 2011 14:00:00 +0000
- SUSE-SU-2011:1195-1, published Fri, 28 Oct 2011 07:08:14 +0200 (CEST)
- openSUSE-SU-2011:1221-1, published Tue, 8 Nov 2011 15:08:24 +0100 (CET)
- openSUSE-SU-2011:1222-1, published Tue, 8 Nov 2011 16:08:22 +0100 (CET)
List of released packages
| Product(s) | Fixed package version(s) | References |
|---|---|---|
| SUSE Linux Enterprise 10 SP4 DEBUGINFO for IPF |
| sles10-sp4.ia64 sle10-sp4-sdk.ia64 sles10-sp4-debuginfo.ia64 ZYPP Patch Nr: 7808 |
| SLE SDK 10 SP4 for IPF |
| sles10-sp4.ia64 sle10-sp4-sdk.ia64 sles10-sp4-debuginfo.ia64 ZYPP Patch Nr: 7808 |
| SUSE Linux Enterprise Server 10 SP4 for IPF |
| sles10-sp4.ia64 sle10-sp4-sdk.ia64 sles10-sp4-debuginfo.ia64 ZYPP Patch Nr: 7808 |
| SUSE Linux Enterprise Desktop 10 SP4 for x86 |
| sle10-sp4-sdk.x86 sles10-sp4.x86 sled10-sp4.x86 sles10-sp4-debuginfo.x86 ZYPP Patch Nr: 7812 |
| SUSE Linux Enterprise 10 SP4 DEBUGINFO for x86 |
| sle10-sp4-sdk.x86 sles10-sp4.x86 sled10-sp4.x86 sles10-sp4-debuginfo.x86 ZYPP Patch Nr: 7812 |
| SLE SDK 10 SP4 for x86 |
| sle10-sp4-sdk.x86 sles10-sp4.x86 sled10-sp4.x86 sles10-sp4-debuginfo.x86 ZYPP Patch Nr: 7812 |
| SUSE Linux Enterprise Server 10 SP4 for x86 |
| sle10-sp4-sdk.x86 sles10-sp4.x86 sled10-sp4.x86 sles10-sp4-debuginfo.x86 ZYPP Patch Nr: 7812 |
| openSUSE 11.4 DEBUGINFO |
| |
| openSUSE 11.4 |
| |
| SUSE Linux Enterprise 10 SP4 DEBUGINFO for IBM zSeries 64bit |
| sles10-sp4-debuginfo.s390x sles10-sp4.s390x ZYPP Patch Nr: 7810 |
| SUSE Linux Enterprise Server 10 SP4 for IBM zSeries 64bit |
| sles10-sp4-debuginfo.s390x sles10-sp4.s390x ZYPP Patch Nr: 7810 |
| SUSE Linux Enterprise Desktop 10 SP4 for AMD64 and Intel EM64T |
| sles10-sp4.x86-64 sled10-sp4.x86-64 sle10-sp4-sdk.x86-64 sles10-sp4-debuginfo.x86-64 ZYPP Patch Nr: 7811 |
| SUSE Linux Enterprise 10 SP4 DEBUGINFO for AMD64 and Intel EM64T |
| sles10-sp4.x86-64 sled10-sp4.x86-64 sle10-sp4-sdk.x86-64 sles10-sp4-debuginfo.x86-64 ZYPP Patch Nr: 7811 |
| SLE SDK 10 SP4 for X86-64 |
| sles10-sp4.x86-64 sled10-sp4.x86-64 sle10-sp4-sdk.x86-64 sles10-sp4-debuginfo.x86-64 ZYPP Patch Nr: 7811 |
| SUSE Linux Enterprise Server 10 SP4 for AMD64 and Intel EM64T |
| sles10-sp4.x86-64 sled10-sp4.x86-64 sle10-sp4-sdk.x86-64 sles10-sp4-debuginfo.x86-64 ZYPP Patch Nr: 7811 |
| SUSE Linux Enterprise 10 SP4 DEBUGINFO for IBM POWER |
| sles10-sp4-debuginfo.ppc sles10-sp4.ppc sle10-sp4-sdk.ppc ZYPP Patch Nr: 7809 |
| SLE SDK 10 SP4 for IBM iSeries and IBM pSeries |
| sles10-sp4-debuginfo.ppc sles10-sp4.ppc sle10-sp4-sdk.ppc ZYPP Patch Nr: 7809 |
| SUSE Linux Enterprise Server 10 SP4 for IBM POWER |
| sles10-sp4-debuginfo.ppc sles10-sp4.ppc sle10-sp4-sdk.ppc ZYPP Patch Nr: 7809 |
| openSUSE 11.3 |
| |
| openSUSE 11.3 |
|