Samba 2.0.9 released - 2.0.8 did NOT fix the hole

From: Andrew Tridgell (tridgeat_private)
Date: Tue May 08 2001 - 16:59:17 PDT

Next message: Progeny Security Team: "PROGENY-SA-2001-13: gFTP client potentially vulnerable to attack"

Previous message: Greg KH: "Immunix OS Security update for samba"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

The recent Samba 2.0.8 security fix release did NOT fix the security
hole in Samba 2.0.7. I have now released Samba 2.0.9 to fix this.

Many thanks to Marc Jacobsen from HP for pointing out the error, and
apologies from the Samba Team for any inconvenience.

Note that the 2.2.0 release did fix the bug, so if you have installed
that release then you can ignore this message.

The 2.0.9 release is available at
    ftp://ftp.samba.org/pub/samba/samba-2.0.9.tar.gz
the patch is available at:
    ftp://ftp.samba.org/pub/samba/patches/samba-2.0.8-2.0.9.diffs.gz

The 2.2.0 release is available at:
    ftp://ftp.samba.org/pub/samba/samba-2.2.0.tar.gz

We do not plan on doing any more releases of Samba 2.0.x.

Distribution vendors have been notified about the error and will be
doing new releases shortly.

Cheers, Tridge

Next message: Progeny Security Team: "PROGENY-SA-2001-13: gFTP client potentially vulnerable to attack"
Previous message: Greg KH: "Immunix OS Security update for samba"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu May 10 2001 - 18:19:07 PDT