[sflack-security] samba (SFSA:2007-255-02)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


[sflack-security]  samba (SFSA:2007-255-02)

New samba packages are available for Sflack 11.0, and 12.0
to fix a security issue and various other bugs.

More details about this issue may be found in the Common
Vulnerabilities and Exposures (CVE) database:

   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4138


Here are the details from the Sflack 12.0 ChangeLog:
+--------------------------+
patches/packages/samba-3.0.26a-x86_64-1_sflack12.0.tgz:
   Upgraded to samba-3.0.26a.
   This fixes a security issue in all Samba 3.0.25 versions:
   "Incorrect primary group assignment for domain users using the rfc2307
    or sfu winbind nss info plugin."
   For more information, see:
     http://www.samba.org/samba/security/CVE-2007-4138.html
     http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4138
   (* Security fix *)
+--------------------------+


Where to find the new packages:
+-----------------------------+

Thanks to the friendly folks at Evolva Telecom
(http://evolva.ro) and serghei.net (http://serghei.net)
for donating additional FTP and rsync hosting
to the Sflack project!   :-)

Also see the "Get Sflack" section on http://sflack.com for
additional mirror sites near you.

Updated package for Sflack 11.0:
ftp://ftp.sflack.com/pub/sflack/sflack-11.0/patches/packages/samba-3.0.26a-x86_64-1_sflack11.0.tgz

Updated package for Sflack 12.0:
ftp://ftp.sflack.com/pub/sflack/sflack-12.0/patches/packages/samba-3.0.26a-x86_64-1_sflack12.0.tgz


MD5 signatures:
+-------------+

Sflack 11.0 package:
b9d9985e3662e9121b31ccdf6f1a1158  samba-3.0.26a-x86_64-1_sflack11.0.tgz

Sflack 12.0 package:
b458c7273926237768cf0771b5cc8772  samba-3.0.26a-x86_64-1_sflack12.0.tgz


Installation instructions:
+------------------------+

Upgrade the package as root:
# upgradepkg samba-3.0.26a-x86_64-1_sflack12.0.tgz

Restart Samba:
# /etc/rc.d/rc.samba restart


+-----+

Sflack Linux Security Team
http://sflack.com/gpg-key
security at sflack.com

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (GNU/Linux)

iD8DBQFG6RjEw79R6/xskD8RAtizAJ9ClLUuZhdppU2xeCMMbYt5hC0SrwCcDyGx
FA4vjwq/5pxz6vAYOQQPHc8=
=gl/l
-----END PGP SIGNATURE-----

Terms and Conditions - Privacy Policy