As stated on http://www.csn.ul.ie/~airlied/pam_smb/, our pam_smb version contains a buffer overflow which can be used for a remote root exploit.
glsa sent