First published: Thu Apr 10 2014(Updated: )
Sebastian Krahmer discovered a stack-based buffer overflow flaw in cifskey.c, which is used by pam_cifscreds. A patch is available from the following: <a href="https://bugzilla.novell.com/show_bug.cgi?id=870168">https://bugzilla.novell.com/show_bug.cgi?id=870168</a> References: <a href="http://seclists.org/oss-sec/2014/q2/66">http://seclists.org/oss-sec/2014/q2/66</a>
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Debian Cifs-utils | <=6.3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.