smbd in Samba 3.0 before 3.0.37, 3.2 before 3.2.15, 3.3 before 3.3.8, and 3.4 before 3.4.2 allows remote authenticated users to cause a denial of service (infinite loop) via an unanticipated oplock break notification reply packet.
The product contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Samba | Samba | * | 3.0.37 (excluding) |
| Samba | Samba | 3.2.0 (including) | 3.2.15 (excluding) |
| Samba | Samba | 3.3.0 (including) | 3.3.8 (excluding) |
| Samba | Samba | 3.4.0 (including) | 3.4.0 (including) |
| Samba | Samba | 3.4.1 (including) | 3.4.1 (including) |
| Red Hat Enterprise Linux 3 | RedHat | samba-0:3.0.9-1.3E.16 | * |
| Red Hat Enterprise Linux 4 | RedHat | samba-0:3.0.33-0.18.el4_8 | * |
| Red Hat Enterprise Linux 5 | RedHat | samba-0:3.0.33-3.15.el5_4 | * |
| Supplementary for Red Hat Enterprise Linux 5 | RedHat | samba3x-0:3.3.8-0.46.el5 | * |
| Samba | Ubuntu | dapper | * |
| Samba | Ubuntu | devel | * |
| Samba | Ubuntu | hardy | * |
| Samba | Ubuntu | intrepid | * |
| Samba | Ubuntu | jaunty | * |