The smbd daemon is prone to a denial-of-service vulnerability. An attacker can exploit this issue to consume excessive memory resources, ultimately crashing the affected application. Reproducible: Always http://www.securityfocus.com/archive/1/459167 http://www.securityfocus.com/archive/1/459181
*** Bug 165544 has been marked as a duplicate of this bug. ***
From the samba-page: Samba 3.0.24 is available for general download. This is a security release which addresses CVE-2007-0452, CVE-2007-0453, and CVE-2007-0454. Tests succeeded as non-root. Retrying now as root.
*** Bug 165585 has been marked as a duplicate of this bug. ***
Version bump committed (all tests passed, works here). Security: It's probably your turn now.
Works for me on x86 and amd64.
thanks everybody. arches, please test and mark stable if appropriate: net-fs/samba-3.0.24
sparc stable.
ppc64 stable
x86 stable
ppc stable
amd64 stable
Stable for HPPA.
Stable on Alpha.
thanks
Stable on IA64.
GLSA 200702-01, thanks to everybody. MIPS, don't forget to mark stable.
mips stable.