rPath alert rPSA-2007-0098-1 (samba) [LWN.net]


From:
    	       rPath Update Announcements <announce-noreply@rpath.com>
To:
    	       security-announce@lists.rpath.com, update-announce@lists.rpath.com
Subject:
    	       rPSA-2007-0098-1 samba samba-swat
Date:
    	       Tue, 15 May 2007 00:21:52 -0400
Cc:
    	       full-disclosure@lists.grok.org.uk, bugtraq@securityfocus.com, lwn@lwn.net
rPath Security Advisory: 2007-0098-1
Published: 2007-05-15
Products: rPath Linux 1
Rating: Severe
Exposure Level Classification:
    Remote Root Non-deterministic Unauthorized Access
Updated Versions:
    samba=/conary.rpath.com@rpl:devel//1/3.0.25-0.1-1
    samba-swat=/conary.rpath.com@rpl:devel//1/3.0.25-0.1-1

References:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2444
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2446
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2447
    https://issues.rpath.com/browse/RPL-1366

Description:
    Previous versions of the samba package are vulnerable to multiple
    attacks in which remote attackers may be able to run arbitrary
    code as the root user on samba servers.

Copyright 2007 rPath, Inc.
This file is distributed under the terms of the MIT License.
A copy is available at http://www.rpath.com/permanent/mit-license.html

From:		rPath Update Announcements <announce-noreply@rpath.com>
To:		security-announce@lists.rpath.com, update-announce@lists.rpath.com
Subject:		rPSA-2007-0098-1 samba samba-swat
Date:		Tue, 15 May 2007 00:21:52 -0400
Cc:		full-disclosure@lists.grok.org.uk, bugtraq@securityfocus.com, lwn@lwn.net