Group,
We discussed Samba 2.2.6 issues a week or so back. Following is a Samba
release to address this issue. The tarball sources are available now
and a Redhad SRPM should be very soon to follow.
(20th Nov, 2002) Security Release - Samba 2.2.7
A security hole has been discovered in versions 2.2.2 through 2.2.6 of
Samba that could potentially allow an attacker to gain root access on
the target machine. The word "potentially" is used because there is no
known exploit of this bug, and the Samba Team has not been able to craft
one ourselves. However, the seriousness of the problem warrants this
immediate 2.2.7 release.
In addition to addressing this security issue, Samba 2.2.7 also includes
thirteen unrelated improvements. These improvements result from our
process of continuous quality assurance and code review, and are part of
the Samba team's committment to excellence.
The complete Release Notes are available on-line. The source tarballs is
available in both gzip format (signature) and bzip2 format (signature).
Here is the Samba Distribution Key for verifying the tarball. Finally,
here is the patchfile against 2.2.6 (signature)
regards,
--
Greg J. Zartman, P.E.
Vice-President
Logging Engineering International, Inc.
1243 West 7th Avenue
Eugene, Oregon 97402
541-683-8383 541-683-8144
www.leiinc.com
--
Please report bugs to [EMAIL PROTECTED]
Please mail [EMAIL PROTECTED] (only) to discuss security issues
Support for registered customers and partners to [EMAIL PROTECTED]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Searchable archive at http://www.mail-archive.com/devinfo%40lists.e-smith.org
- [e-smith-devinfo] mailrules.default query Darrell May
- Re: [e-smith-devinfo] mailrules.default query Gordon Rowell
- Re: [e-smith-devinfo] [ANNOUCEMENT] SAMBA 2.2.6 ... Greg J. Zartman
- Re: [e-smith-devinfo] [ANNOUCEMENT] SAMBA 2.... Greg J. Zartman
- Re: [e-smith-devinfo] [ANNOUCEMENT] SAMB... Charlie Brady
