After today's samba update, Centos 3 boxes can not use samba to communicate with each other, although Windows and the Centos 3 boxes see each other correctly as do RHEL5 and the Centos3 boxes. The du command works well, but ls, cp, cat ,etc produces the error: PANIC: push_ascii - dest_len == -1 in the server log and smb_trans2_request: result=-5, setting invalid in the client.
A similar (but more serious) set of problems was reported in Ubuntu early this morning after their update.
Is any one else experiencing this problem with samba and Centos 3 after the update?
regards,
benm
Ben Mohilef wrote:
PANIC: push_ascii - dest_len == -1 in the server log and smb_trans2_request: result=-5, setting invalid in the client.
Can you file a bug at bugs.centos.org? Or even better at bugzilla.redhat.com and provide us with the bug number there?
Thanks,
Ralph
Content-type: Multipart/Alternative; boundary="Alt-Boundary-3379.18435061"
--Alt-Boundary-3379.18435061
Can you file a bug at bugs.centos.org? Or even better at bugzilla.redhat.com and provide us with the bug number there?
Thanks,
Ralph
Red Hat Bug 389021 opened on 11-17-07.
Near identical wildcard problem reported 11-16-07 after security update in Gentoo. See: http://forums.gentoo.org/viewtopic-p-4509521.html?sid=e417b093d116b24b4bb819... FWIW, Gentoo bug number is 199450.
Unlike the ubuntu version of this problem, neither the RHEL3 nor the Gentoo bugs segfault nmbd.
The updated RHEL5 CLIENT does not exhibit the problem. The RHEL3 CLIENTS exhibit the problem after Centos3 or RHEL5 samba SERVER updates. All this is reversible by installing the old rpms respectively. The Gentoo issue is similarly reversible.
This looks like this could be a null pointer dereference issue caused by the samba security patch. Bug reports probably need to be upgraded a notch from low priority since a lot of people apparently have mixed linux-win networks and use linux-to-linux samba transfers.
regards,
benm
--Alt-Boundary-3379.18435061 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en"><head> <title></title> <meta http-equiv="content-type" content="text/html;charset=utf-8"/> <meta http-equiv="Content-Style-Type" content="text/css"/> </head> <body> <div align="left"> <font face="Arial" color="#7f0000" size="2"> <span style=" font-size:10pt">  > Can you file a bug at bugs.centos.org? Or even better at</span></font> </div> <div align="left"> <font face="Arial" color="#7f0000" size="2"> <span style=" font-size:10pt"> > bugzilla.redhat.com and provide us with the bug number there?</span></font> </div> <div align="left"> <font face="Arial" color="#7f0000" size="2"> <span style=" font-size:10pt"> > </span></font> </div> <div align="left"> <font face="Arial" color="#7f0000" size="2"> <span style=" font-size:10pt"> > Thanks,</span></font> </div> <div align="left"> <font face="Arial" color="#7f0000" size="2"> <span style=" font-size:10pt"> > </span></font> </div> <div align="left"> <font face="Arial" color="#7f0000" size="2"> <span style=" font-size:10pt"> > Ralph</span></font> </div> <div align="left"> <font face="Arial" color="#7f0000" size="2"> <span style=" font-size:10pt"> > </span></font> </div> <div align="left"> <font face="Arial" color="#7f0000" size="2"> <span style=" font-size:10pt"> <br /> </span> </font> </div> <div align="left"> <font face="Arial" size="2"> <span style=" font-size:10pt"> Red Hat </span></font> <font face="Arial" size="2"> <span style=" font-size:10pt"> Bug 389021  opened on 11-17-07.</span></font> </div> <div align="left"> <font face="Arial" size="2"> <span style=" font-size:10pt"> <br /> </span> </font> </div> <div align="left"> <font face="Arial" size="2"> <span style=" font-size:10pt"> Near identical wildcard problem reported 11-16-07 after security update in Gentoo. See:</span></font> </div> <div align="left"> <font face="Arial" size="2"> <span style=" font-size:10pt"> http://forums.gentoo.org/viewtopic-p-4509521.html?sid=e417b093d116b24b4bb819...</span></font> </div> <div align="left"> <font face="Arial" size="2"> <span style=" font-size:10pt"> FWIW, Gentoo bug number is 199450.  </span></font> </div> <div align="left"> <font face="Arial" size="2"> <span style=" font-size:10pt"> <br /> </span> </font> </div> <div align="left"> <font face="Arial" size="2"> <span style=" font-size:10pt"> Unlike the ubuntu version of this problem, neither the RHEL3 nor the Gentoo bugs segfault nmbd. </span></font> </div> <div align="left"> <font face="Arial" size="2"> <span style=" font-size:10pt"> <br /> </span> </font> </div> <div align="left"> <font face="Arial" size="2"> <span style=" font-size:10pt"> The updated RHEL5 CLIENT does not exhibit the problem. The RHEL3 CLIENTS exhibit the problem after Centos3 or RHEL5 samba SERVER updates. All this is reversible by installing the old rpms respectively. The Gentoo issue is similarly reversible.</span></font> </div> <div align="left"> <font face="Arial" size="2"> <span style=" font-size:10pt"> <br /> </span> </font> </div> <div align="left"> <font face="Arial" size="2"> <span style=" font-size:10pt"> This looks like this could be a null pointer dereference issue caused by the samba security patch. Bug reports probably need to be upgraded a notch from low priority since a lot of people apparently have mixed linux-win networks and use linux-to-linux samba transfers.</span></font> </div> <div align="left"> <font face="Arial" size="2"> <span style=" font-size:10pt"> <br /> </span> </font> </div> <div align="left"> <font face="Arial" size="2"> <span style=" font-size:10pt"> <br /> </span> </font> </div> <div align="left"> <font face="Arial" size="2"> <span style=" font-size:10pt"> regards,</span></font> </div> <div align="left"> <font face="Arial" size="2"> <span style=" font-size:10pt"> <br /> </span> </font> </div> <div align="left"> <font face="Arial" size="2"> <span style=" font-size:10pt"> benm</span></font> </div> <div align="left"> <font face="Arial" size="2"> <span style=" font-size:10pt"> <br /> </span> </font> </div> <div align="left"> <font face="Arial" size="2"> <span style=" font-size:10pt">   </span></font> </div> <div align="left"> </div> </body> </html>
--Alt-Boundary-3379.18435061--
Ben Mohilef wrote:
Can you file a bug at bugs.centos.org? Or even better at bugzilla.redhat.com and provide us with the bug number there?
Red Hat Bug 389021 opened on 11-17-07.
Thank you.
Now also http://bugs.centos.org/view.php?id=2452
Cheers,
Ralph
FWIW, Gentoo bug number is 199450.
Also Debian Tag 451839
and (the important one) Samba bug 5087
Discussion if this situation on the samba list dated 11-16 just appeared on Nabble (watch the wrap):
http://www.nabble.com/-samba-bugs@samba.org:-DO-NOT-REPLY--Bug-5087--Crash-o... after-upgrade-to-3.0.27--t4822039.html
Apparently their QA never tested a unix-unix situation. I suspect a fully tested fix will be coming shortly from samba.org since they seem very aware of the issues.
BTW, there are no known exploits <yet> with the old version, so if you are running mixed use samba it is probably safe to revert to the old rpms. YMMV.
regards,
benm
On Fri, Nov 16, 2007 at 09:00:57AM -0800, Ben Mohilef wrote:
After today's samba update, Centos 3 boxes can not use samba to communicate with each other, although Windows and the Centos 3 boxes see each other correctly as do RHEL5 and the Centos3 boxes. The du command works well, but ls, cp, cat ,etc produces the error: PANIC: push_ascii - dest_len == -1 in the server log and smb_trans2_request: result=-5, setting invalid in the client.
You mean samba-3.0.9-1.3E.13.2 -> samba-3.0.9-1.3E.14.1 ?
The changelog only reads: * Wed Oct 17 2007 Simo Sorce ssorce@redhat.com 3.0.9-1.3E.14 - Security fix for CVE-2007-4572 and CVE-2007-5398 resolves: #350731 resolves: #359101
Are all your CentOS-3 machines running the same samba version? (smb restarted ?)
A similar (but more serious) set of problems was reported in Ubuntu early this morning after their update.
Is any one else experiencing this problem with samba and Centos 3 after the update?
You are the first reporting it, I don't really use samba ;)
According to the diff from the 2 above versions, the possible culprit is samba-3.0.9-CVE-2007-4572.patch
Cheers, and keep up posted!
Tru
-
Ben Mohilef -
Ralph Angenendt -
Tru Huynh