CVE-2017-15275 in Ubuntu

CVE-2017-15275

Priority

Medium

Description

Samba before 4.7.3 might allow remote attackers to obtain sensitive
information by leveraging failure of the server to clear allocated heap
memory.

References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15275
https://www.samba.org/samba/security/CVE-2017-15275.html
https://usn.ubuntu.com/usn/usn-3486-1
https://usn.ubuntu.com/usn/usn-3486-2

Bugs

https://bugzilla.samba.org/show_bug.cgi?id=13077

Assigned-to

mdeslaur

Package

Source: samba (LP Ubuntu Debian)

Upstream:	needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):	released (2:3.6.25-0ubuntu0.12.04.14)
Ubuntu 14.04 LTS (Trusty Tahr):	released (2:4.3.11+dfsg-0ubuntu0.14.04.13)
Ubuntu 16.04 LTS (Xenial Xerus):	released (2:4.3.11+dfsg-0ubuntu0.16.04.12)
Ubuntu 17.04 (Zesty Zapus):	released (2:4.5.8+dfsg-0ubuntu0.17.04.8)
Ubuntu 17.10 (Artful Aardvark):	released (2:4.6.7+dfsg-1ubuntu3.1)
Ubuntu 18.04 LTS (Bionic Beaver):	released (2:4.7.3+dfsg-1ubuntu1)

More Information

Updated: 2017-12-15 20:35:44 UTC (commit 13913)