Date: Wed, 18 Nov 1998 12:45:44 +0100 From: Wichert Akkerman <wichert@cs.leidenuniv.nl> To: Debian Security Announce <debian-security-announce@lists.debian.org> Subject: [SECURITY] Debian not affected by samba problems --4Ckj6UjgE2iN1+kY Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: quoted-printable There have been reports that some Linux distributions are affected by a vulnerability in samba. There are two issues: * the wsmbconf program (which is still a prototype application not meant for general release) is unsafe. Debian does not distribute this program. * some distributions used a world-writable directory without a t bit. We use /var/tmp which does not suffer from this problem. There is no need to upgrade your samba package. --=20 Debian GNU/Linux . Security Managers . security@debian.org debian-security-announce@lists.debian.org Christian Hudon . Wichert Akkerman . Martin Schulze <chrish@debian.org> . <wakkerma@debian.org> . <joey@debian.org> --4Ckj6UjgE2iN1+kY Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: 2.6.3ia iQB1AwUBNlKzaKjZR/ntlUftAQFC/gL+PRgZpEJ12wnHKzLJQWoatXW0dLz/ulNQ f6J1WcFKcu/UHXIIWMPvVwilIR6qA+Z6Yf+qW8Pu3Zx0/LfPcsCcB92yD4ClBaw4 GeYw/KstMNJHyjJyybhegASDffQH6xfX =W+RM -----END PGP SIGNATURE----- --4Ckj6UjgE2iN1+kY-- -- To UNSUBSCRIBE, email to debian-security-announce-request@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org