Launchpad CVE tracker

CVE 2008-3789

Samba 3.2.0 uses weak permissions (0666) for the (1) group_mapping.tdb and (2) group_mapping.ldb files, which allows local users to modify the membership of Unix groups.

Related bugs and status

CVE-2008-3789 (Candidate) is related to these bugs:

Bug #261544: Please add UFW profile integration with Samba

Summary				In	Importance	Status
	261544	Please add UFW profile integration with Samba		samba (Ubuntu)	Undecided	Fix Released

Bug #262291: hardy: update samba to 3.0.32

Summary				In	Importance	Status
	262291	hardy: update samba to 3.0.32		samba (Ubuntu)	Undecided	Invalid

See the

CVE page on Mitre.org for more details.

References

MLIST: [oss-security] 2008082...
CONFIRM: http://bugs.debian.org...
CONFIRM: http://samba.org/samba...
BID: 30837
SECTRACK: 1020770
SECUNIA: 31601
VUPEN: ADV-2008-2440
XF: samba-groupmapping-sec...

Launchpad.net

CVE 2008-3789

Related bugs and status

Related bugs

References