Samba vulnerability CVE-2015-0240

Hello.

Last firmware MyCloud:

# cat /etc/*-release
PRETTY_NAME="Debian GNU/Linux 7 (wheezy)"
NAME="Debian GNU/Linux"
VERSION_ID="7"
VERSION="7 (wheezy)"
ID=debian
ANSI_COLOR="1;31"
HOME_URL="http://www.debian.org/"
SUPPORT_URL="http://www.debian.org/support/"
BUG_REPORT_URL="http://bugs.debian.org/"
# smbd -V
Version 4.0.0rc5

Official post:

https://www.samba.org/samba/security/CVE-2015-0240

All versions of Samba from 3.5.0 to 4.2.0rc4 are vulnerable to an
unexpected code execution vulnerability in the smbd file server
daemon.

https://security-tracker.debian.org/tracker/CVE-2015-0240

How to fix?

1 Like

Hello, 

We have passed this along to support.

Thanks,

1 Like