![[LWN Logo]](/images/lwn.banner.gif)
Date: Wed, 18 Nov 1998 12:45:44 +0100
From: Wichert Akkerman <wichert@cs.leidenuniv.nl>
To: Debian Security Announce <debian-security-announce@lists.debian.org>
Subject: [SECURITY] Debian not affected by samba problems
--4Ckj6UjgE2iN1+kY
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: quoted-printable
There have been reports that some Linux distributions are affected by
a vulnerability in samba. There are two issues:
* the wsmbconf program (which is still a prototype application not
meant for general release) is unsafe. Debian does not distribute this
program.
* some distributions used a world-writable directory without a t bit.
We use /var/tmp which does not suffer from this problem.
There is no need to upgrade your samba package.
--=20
Debian GNU/Linux . Security Managers . security@debian.org
debian-security-announce@lists.debian.org
Christian Hudon . Wichert Akkerman . Martin Schulze
<chrish@debian.org> . <wakkerma@debian.org> . <joey@debian.org>
--4Ckj6UjgE2iN1+kY
Content-Type: application/pgp-signature
-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia
iQB1AwUBNlKzaKjZR/ntlUftAQFC/gL+PRgZpEJ12wnHKzLJQWoatXW0dLz/ulNQ
f6J1WcFKcu/UHXIIWMPvVwilIR6qA+Z6Yf+qW8Pu3Zx0/LfPcsCcB92yD4ClBaw4
GeYw/KstMNJHyjJyybhegASDffQH6xfX
=W+RM
-----END PGP SIGNATURE-----
--4Ckj6UjgE2iN1+kY--
--
To UNSUBSCRIBE, email to debian-security-announce-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org