CVE-2017-9461 samba: fd_open_atomic infinite loop due to wrong handling of dangling symlinks

CVE ID

CVE-2017-9461

DESCRIPTION

A flaw was found in the way Samba handled dangling symlinks. An authenticated malicious Samba client could use this flaw to cause the smbd daemon to enter an infinite loop and use an excessive amount of CPU and memory.

RESOLUTION

  • CentOS6 Unitrends' appliances (physical and/or virtual) are not affected.
  • CentOS7 Unitrends' appliances (physical and/or virtual) are not affected.

LINK TO ADVISORIES

Was this article helpful?
0 out of 0 found this helpful
Have more questions? Contact us