{"id":"USN-2508-1","summary":"samba vulnerability","details":"Richard van Eeden discovered that the Samba smbd file services incorrectly\nhandled memory. A remote attacker could use this issue to possibly execute\narbitrary code with root privileges.\n","modified":"2026-04-22T09:08:58.037389Z","published":"2015-02-23T18:19:14Z","related":["UBUNTU-CVE-2015-0240"],"upstream":["CVE-2015-0240","UBUNTU-CVE-2015-0240"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-2508-1"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2015-0240"}],"affected":[{"package":{"name":"samba","ecosystem":"Ubuntu:14.04:LTS","purl":"pkg:deb/ubuntu/samba@2:4.1.6+dfsg-1ubuntu2.14.04.7?arch=source&distro=trusty"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:4.1.6+dfsg-1ubuntu2.14.04.7"}]}],"versions":["2:3.6.18-1ubuntu3","2:4.0.10+dfsg-4ubuntu2","2:4.0.13+dfsg-1ubuntu1","2:4.1.3+dfsg-2ubuntu2","2:4.1.3+dfsg-2ubuntu3","2:4.1.3+dfsg-2ubuntu4","2:4.1.3+dfsg-2ubuntu5","2:4.1.6+dfsg-1ubuntu1","2:4.1.6+dfsg-1ubuntu2","2:4.1.6+dfsg-1ubuntu2.14.04.1","2:4.1.6+dfsg-1ubuntu2.14.04.2","2:4.1.6+dfsg-1ubuntu2.14.04.3","2:4.1.6+dfsg-1ubuntu2.14.04.4","2:4.1.6+dfsg-1ubuntu2.14.04.5"],"ecosystem_specific":{"binaries":[{"binary_name":"libnss-winbind","binary_version":"2:4.1.6+dfsg-1ubuntu2.14.04.7"},{"binary_name":"libpam-smbpass","binary_version":"2:4.1.6+dfsg-1ubuntu2.14.04.7"},{"binary_name":"libpam-winbind","binary_version":"2:4.1.6+dfsg-1ubuntu2.14.04.7"},{"binary_name":"libparse-pidl-perl","binary_version":"2:4.1.6+dfsg-1ubuntu2.14.04.7"},{"binary_name":"libsmbclient","binary_version":"2:4.1.6+dfsg-1ubuntu2.14.04.7"},{"binary_name":"libsmbsharemodes0","binary_version":"2:4.1.6+dfsg-1ubuntu2.14.04.7"},{"binary_name":"libwbclient0","binary_version":"2:4.1.6+dfsg-1ubuntu2.14.04.7"},{"binary_name":"python-samba","binary_version":"2:4.1.6+dfsg-1ubuntu2.14.04.7"},{"binary_name":"registry-tools","binary_version":"2:4.1.6+dfsg-1ubuntu2.14.04.7"},{"binary_name":"samba","binary_version":"2:4.1.6+dfsg-1ubuntu2.14.04.7"},{"binary_name":"samba-common","binary_version":"2:4.1.6+dfsg-1ubuntu2.14.04.7"},{"binary_name":"samba-common-bin","binary_version":"2:4.1.6+dfsg-1ubuntu2.14.04.7"},{"binary_name":"samba-dsdb-modules","binary_version":"2:4.1.6+dfsg-1ubuntu2.14.04.7"},{"binary_name":"samba-libs","binary_version":"2:4.1.6+dfsg-1ubuntu2.14.04.7"},{"binary_name":"samba-testsuite","binary_version":"2:4.1.6+dfsg-1ubuntu2.14.04.7"},{"binary_name":"samba-vfs-modules","binary_version":"2:4.1.6+dfsg-1ubuntu2.14.04.7"},{"binary_name":"smbclient","binary_version":"2:4.1.6+dfsg-1ubuntu2.14.04.7"},{"binary_name":"winbind","binary_version":"2:4.1.6+dfsg-1ubuntu2.14.04.7"}],"availability":"No subscription required"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-2508-1.json","cves_map":{"cves":[{"severity":[{"type":"Ubuntu","score":"medium"}],"id":"CVE-2015-0240"}],"ecosystem":"Ubuntu:14.04:LTS"}}}],"schema_version":"1.7.5"}