New samba packages are available for Slack/390 9.0, 9.1, and -current to fix security issues.
More details about these issues may be found in the Common Vulnerabilities and Exposures (CVE) database: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0600 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0686 Here are the details from the Slack/390 -current ChangeLog: +--------------------------+ Mon Jul 26 12:04:25 EDT 2004 patches/packages/samba-3.0.5-s390-1.tgz: Upgraded to samba-3.0.5. This fixes a buffer overflow in SWAT and another in the code supporting the 'mangling method = hash' smb.conf option (which is not the default). For more details, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0600 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0686 (* Security fix *) +--------------------------+ Where to find the new packages: +-----------------------------+ Updated package for Slack/390 9.0: ftp://ftp.ibiblio.org/pub/Linux/distributions/slack390/slack390-9.0/slackwar e/n/samba-2.2.10-s390-1.tgz Updated package for Slack/390 9.1: ftp://ftp.ibiblio.org/pub/Linux/distributions/slack390/slack390-9.1/patches/ packages/samba-2.2.10-s390-1.tgz Updated package for Slack/390 -current: ftp://ftp.ibiblio.org/pub/Linux/distributions/slack390/slack390-current/patc hes/packages/samba-3.0.5-s390-1.tgz MD5 signatures: +-------------+ Slack/390 9.0 package: 1e4417cfb0c9d0413e1e3a418a3dc582 samba-2.2.10-s390-1.tgz Slack/390 9.1 package: d6e2ef66cee42f5cf217c8b627420616 samba-2.2.10-s390-1.tgz Slack/390 -current package: 3d1fbea78387f62bec84993bb8f4e93c samba-3.0.5-s390-1.tgz Installation instructions: +------------------------+ As root, stop the samba server: . /etc/rc.d/rc.samba stop Next, upgrade the samba package(s) with upgradepkg: upgradepkg samba-3.0.5-s390-1.tgz Finally, start samba again: . /etc/rc.d/rc.samba start +-----+ Mark Post ---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390
