Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2015-5252

vfs.c in smbd in Samba 3.x and 4.x before 4.1.22, 4.2.x before 4.2.7, and 4.3.x before 4.3.3, when share names with certain substring relationships exist, allows remote attackers to bypass intended file-access restrictions via a symlink that points outside of a share.

Related bugs and status

CVE-2015-5252 (Candidate) is related to these bugs:

Bug #1545750: Access denied if the share path is "/"

		In	Importance	Status
1545750	Access denied if the share path is "/"	samba (Ubuntu)	Medium	Fix Released
1545750	Access denied if the share path is "/"	samba	Unknown	Unknown
1545750	Access denied if the share path is "/"	samba (Ubuntu Precise)	Medium	Fix Released
1545750	Access denied if the share path is "/"	samba (Ubuntu Trusty)	Medium	Fix Released
1545750	Access denied if the share path is "/"	samba (Ubuntu Wily)	Medium	Fix Released
1545750	Access denied if the share path is "/"	samba (Debian)	Unknown	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: https://bugzilla.redha...
CONFIRM: https://git.samba.org/...
CONFIRM: https://www.samba.org/...
CONFIRM: https://h20566.www2.hp...
CONFIRM: http://www.oracle.com/...
CONFIRM: http://www.oracle.com/...
BID: 79733
SUSE: SUSE-SU-2016:1105
SUSE: openSUSE-SU-2016:1064
SUSE: openSUSE-SU-2016:1106
SUSE: openSUSE-SU-2016:1107
UBUNTU: USN-2855-2
DEBIAN: DSA-3433
FEDORA: FEDORA-2015-0e0879cc8a
FEDORA: FEDORA-2015-b36076d32e
SUSE: SUSE-SU-2015:2304
SUSE: SUSE-SU-2015:2305
SUSE: SUSE-SU-2016:0032
SUSE: openSUSE-SU-2015:2354
SUSE: openSUSE-SU-2015:2356
SUSE: SUSE-SU-2016:0164
UBUNTU: USN-2855-1
SECTRACK: 1034493
GENTOO: GLSA-201612-47