11008 – Samba 2.2.7 Released - Security Bugfix

Bug 11008 - Samba 2.2.7 Released - Security Bugfix

Summary: Samba 2.2.7 Released - Security Bugfix

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	New packages (show other bugs)
Hardware:	x86 Linux

Importance:	High normal (vote)
Assignee:	Gentoo's SAMBA Team

URL:	http://www.samba.org/samba/whatsnew/s...
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2002-11-20 11:42 UTC by Richard C
Modified:	2004-07-27 00:38 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Richard C 2002-11-20 11:42:02 UTC

The Samba Team is proud to announce the release of Samba 2.2.7.

A security hole has been discovered in versions 2.2.2 through 2.2.6
of Samba that could potentially allow an attacker to gain root access
on the target machine.  The word "potentially" is used because there
is no known exploit of this bug, and the Samba Team has not been able to
craft one ourselves. However, the seriousness of the problem warrants
this immediate 2.2.7 release.

In addition to addressing this security issue, Samba 2.2.7 also includes
thirteen unrelated improvements. These improvements result from our
process of continuous quality assurance and code review, and are part of
the Samba team's commitment to excellence.

Comment 1 SpanKY gentoo-dev

2002-11-20 12:02:28 UTC

root@rux0r root # emerge world -up

These are the packages that I would merge, in order.

Calculating world dependencies ...done!
[ebuild    U ] net-fs/samba-2.2.7
[ebuild    U ] net-www/lynx-2.8.4.1d

root@rux0r root #