{ "threat_severity" : "Critical", "public_date" : "2012-04-10T00:00:00Z", "bugzilla" : { "description" : "samba: Multiple heap-based buffer overflows in memory management based on NDR marshalling code output", "id" : "804093", "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=804093" }, "cvss" : { "cvss_base_score" : "8.3", "cvss_scoring_vector" : "AV:A/AC:L/Au:N/C:C/I:C/A:C", "status" : "verified" }, "cwe" : "CWE-228->CWE-122", "details" : [ "The RPC code generator in Samba 3.x before 3.4.16, 3.5.x before 3.5.14, and 3.6.x before 3.6.4 does not implement validation of an array length in a manner consistent with validation of array memory allocation, which allows remote attackers to execute arbitrary code via a crafted RPC call." ], "affected_release" : [ { "product_name" : "Red Hat Enterprise Linux 4 Extended Lifecycle Support", "release_date" : "2012-04-13T00:00:00Z", "advisory" : "RHSA-2012:0478", "cpe" : "cpe:/o:redhat:rhel_els:4", "package" : "samba-0:3.0.33-3.36.el4" }, { "product_name" : "Red Hat Enterprise Linux 5", "release_date" : "2012-04-10T00:00:00Z", "advisory" : "RHSA-2012:0465", "cpe" : "cpe:/o:redhat:enterprise_linux:5", "package" : "samba-0:3.0.33-3.39.el5_8" }, { "product_name" : "Red Hat Enterprise Linux 5", "release_date" : "2012-04-10T00:00:00Z", "advisory" : "RHSA-2012:0466", "cpe" : "cpe:/o:redhat:enterprise_linux:5", "package" : "samba3x-0:3.5.10-0.108.el5_8" }, { "product_name" : "Red Hat Enterprise Linux 5.3 Long Life", "release_date" : "2012-04-10T00:00:00Z", "advisory" : "RHSA-2012:0465", "cpe" : "cpe:/o:redhat:rhel_mission_critical:5.3", "package" : "samba-0:3.0.33-3.7.el5_3.5" }, { "product_name" : "Red Hat Enterprise Linux 5.6 EUS - Server Only", "release_date" : "2012-04-10T00:00:00Z", "advisory" : "RHSA-2012:0465", "cpe" : "cpe:/o:redhat:rhel_eus:5.6", "package" : "samba-0:3.0.33-3.29.el5_6.5" }, { "product_name" : "Red Hat Enterprise Linux 5.6 EUS - Server Only", "release_date" : "2012-04-10T00:00:00Z", "advisory" : "RHSA-2012:0466", "cpe" : "cpe:/o:redhat:rhel_eus:5.6", "package" : "samba3x-0:3.5.4-0.70.el5_6.2" }, { "product_name" : "Red Hat Enterprise Linux 6", "release_date" : "2012-04-10T00:00:00Z", "advisory" : "RHSA-2012:0465", "cpe" : "cpe:/o:redhat:enterprise_linux:6", "package" : "samba-0:3.5.10-115.el6_2" }, { "product_name" : "Red Hat Enterprise Linux 6", "release_date" : "2013-02-20T00:00:00Z", "advisory" : "RHSA-2013:0506", "cpe" : "cpe:/o:redhat:enterprise_linux:6", "package" : "samba4-0:4.0.0-55.el6.rc4", "impact" : "moderate" }, { "product_name" : "Red Hat Enterprise Linux 6", "release_date" : "2013-02-20T00:00:00Z", "advisory" : "RHSA-2013:0515", "cpe" : "cpe:/o:redhat:enterprise_linux:6", "package" : "evolution-mapi-0:0.28.3-12.el6", "impact" : "moderate" }, { "product_name" : "Red Hat Enterprise Linux 6", "release_date" : "2013-02-20T00:00:00Z", "advisory" : "RHSA-2013:0515", "cpe" : "cpe:/o:redhat:enterprise_linux:6", "package" : "openchange-0:1.0-4.el6" }, { "product_name" : "Red Hat Enterprise Linux 6.0 EUS - Server Only", "release_date" : "2012-04-10T00:00:00Z", "advisory" : "RHSA-2012:0465", "cpe" : "cpe:/o:redhat:rhel_eus:6.0", "package" : "samba-0:3.5.4-68.el6_0.3" }, { "product_name" : "Red Hat Enterprise Linux 6.1 EUS - Server Only", "release_date" : "2012-04-10T00:00:00Z", "advisory" : "RHSA-2012:0465", "cpe" : "cpe:/o:redhat:rhel_eus:6.1", "package" : "samba-0:3.5.6-86.el6_1.5" } ], "references" : [ "https://www.cve.org/CVERecord?id=CVE-2012-1182\nhttps://nvd.nist.gov/vuln/detail/CVE-2012-1182\nhttp://www.samba.org/samba/history/samba-3.6.4.html" ], "name" : "CVE-2012-1182", "csaw" : false }