Debian
samba package

samba 2:3.4.2-1 source package in Debian

Changelog

samba (2:3.4.2-1) unstable; urgency=high


  * New upstream release. Security update.
  * CVE-2009-2813:
    Connecting to the home share of a user will use the root of the
    filesystem as the home directory if this user is misconfigured to
    have an empty home directory in /etc/passwd.
  * CVE-2009-2948:
    If mount.cifs is installed as a setuid program, a user can pass it
    a credential or password path to which he or she does not have
    access and then use the --verbose option to view the first line of
    that file.
  * CVE-2009-2906:
    Specially crafted SMB requests on authenticated SMB connections
    can send smbd into a 100% CPU loop, causing a DoS on the Samba
    server.

 -- Christian Perrier <email address hidden>  Sat, 03 Oct 2009 08:30:33 +0200

Upload details

Uploaded by:
Debian Samba Maintainers
Uploaded to:
Sid
Original maintainer:
Debian Samba Maintainers
Architectures:
any
Section:
net
Urgency:
Very Urgent

See full publishing history Publishing

Series Pocket Published Component Section

Builds

Downloads

File Size SHA-256 Checksum
samba_3.4.2-1.dsc 2.2 KiB 1a14b53822c9c20f90d3db292ff08af7d3df550c6302aa635ceb88042dcf68c0
samba_3.4.2.orig.tar.gz 33.4 MiB 8b880e78d175a82df627d61a070461812bba209b21346aa0383cd5c96d364fc4
samba_3.4.2-1.diff.gz 458.9 KiB e34e3ddb7ab73d57feb79770ebe74d2ba5b889ae0ccd54f352c09274f48891a5

No changes file available.

Binary packages built by this source