New Samba packages are avaliable
Jay Fenlason
fenlason at redhat.com
Mon Feb 16 16:38:56 UTC 2004
Updated Samba packages that fix a potential unathorized access problem
are now avaliable.
Under some circumstances, Samba 3.0.0 and 3.0.1 could overwrite the
password field of a disabled account with uninitialized memory. If an
attacker could know what will be in that memory, he could gain access
to the disabled acocunt.
If you use Samba, you should consider upgrading to these new packages.
---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2004-074
2004-02-16
---------------------------------------------------------------------
Name : samba
Version : 3.0.2
Release : 7.FC1
Summary : The Samba SMB server.
Description :
Samba is the protocol by which a lot of PC-related machines share
files, printers, and other information (such as lists of available
files and printers). The Windows NT, OS/2, and Linux operating systems
support this natively, and add-on packages can enable the same thing
for DOS, Windows, VMS, UNIX of all kinds, MVS, and more. This package
provides an SMB server that can be used to provide network services to
SMB (sometimes called "Lan Manager") clients. Samba uses NetBIOS over
TCP/IP (NetBT) protocols and does NOT need the NetBEUI (Microsoft Raw
NetBIOS frame) protocol.
---------------------------------------------------------------------
Update Information:
---------------------------------------------------------------------
* Thu Feb 12 2004 Jay Fenlason <fenlason at redhat.com> 3.0.2-7.FC1
- Fix the ownership on /usr/lib/samba and /usr/lib/samba/charset
* Mon Feb 09 2004 Jay Fenlason <fenlason at redhat.com> 3.0.2-5.FC1
- Merge from HEAD to build 3.0.2 for Fedora Core 1 erratum.
- New upstream version: 3.0.2 final includes security fix for #114995
(CAN-2004-0082)
- Edit postun script for the -common package to restart winbind when
appropriate. Fixes bugzilla #114051.
* Mon Feb 02 2004 Jay Fenlason <fenlason at redhat.com> 3.0.2-3rc2
- add %dir entries for /usr/lib/samba and /usr/lib/samba/charset
- Upgrade to new upstream version
- build mount.cifs for the new cifs filesystem in the 2.6 kernel.
* Mon Jan 19 2004 Jay Fenlason <fenlason at redhat.com> 3.0.2-1rc1
- Upgrade to new upstream version
* Wed Dec 17 2003 Felipe Alfaro Solana <felipe_alfaro at linuxmail.org> 3.0.1-1
- Update to 3.0.1
- Removed testparm patch as it's already merged
- Removed Samba.7* man pages
- Fixed .buildroot patch
- Fixed .pie patch
- Added new /usr/bin/tdbdump file
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/
2ee8ced2420caee182cc7e7bd24bc578 SRPMS/samba-3.0.2-7.FC1.src.rpm
f07e98858197c4c0f8d87823f07d2e18 i386/samba-3.0.2-7.FC1.i386.rpm
5db069ff37ce550bf10bd555d52df2da i386/samba-client-3.0.2-7.FC1.i386.rpm
fa703cf8f43b965faebdb3ecdd7e438e i386/samba-common-3.0.2-7.FC1.i386.rpm
5823c93c369ca7e6083b386bb48bf81a i386/debug/samba-debuginfo-3.0.2-7.FC1.i386.rpm
e4ceab8f113b7fcbd460271ab72dea95 i386/samba-swat-3.0.2-7.FC1.i386.rpm
This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------
More information about the fedora-announce-list
mailing list