From: Kurt Seifried <seifried@SECURITYPORTAL.COM> To: LINUX-SECURITY@LISTSERV.SECURITYPORTAL.COM Subject: LSLID:2001050814 - ImmunixOS - samba - IMNX-2001-70-019-01 Date: Tue, 8 May 2001 21:41:42 -0600 LSLID:2001050814 ----------------------------------------------------------------------- Immunix OS Security Advisory Packages updated: samba Affected products: Immunix OS 6.2, 7.0-beta, and 7.0 Bugs Fixed: immunix/1595 Date: May 8, 2001 Advisory ID: IMNX-2001-70-019-01 Author: Greg Kroah-Hartman <greg@wirex.com> ----------------------------------------------------------------------- Description: A temp file race has been found in the all release of samba prior to 2.0.9. This could allow any local malicious user to get administrator privileges on a machine running samba. The Samba team has released a patch to fix this. The following packages fix this problem. Package names and locations: Precompiled binary packages for Immunix 6.2 are available at: http://immunix.org/ImmunixOS/6.2/updates/RPMS/samba-2.0.8-1_StackGuard_1.i386. rpm http://immunix.org/ImmunixOS/6.2/updates/RPMS/samba-client-2.0.8-1_StackGuard_ 1.i386.rpm http://immunix.org/ImmunixOS/6.2/updates/RPMS/samba-common-2.0.8-1_StackGuard_ 1.i386.rpm Source package for Immunix 6.2 is available at: http://immunix.org/ImmunixOS/6.2/updates/SRPMS/samba-2.0.8-1_StackGuard_1.src. rpm Precompiled binary packages for Immunix 7.0-beta and 7.0 are available at: http://immunix.org/ImmunixOS/7.0/updates/RPMS/samba-2.0.8-1_imnx_1.i386.rpm http://immunix.org/ImmunixOS/7.0/updates/RPMS/samba-client-2.0.8-1_imnx_1.i386 .rpm http://immunix.org/ImmunixOS/7.0/updates/RPMS/samba-common-2.0.8-1_imnx_1.i386 .rpm Source package for Immunix 7.0-beta and 7.0 is available at: http://immunix.org/ImmunixOS/7.0/updates/SRPMS/samba-2.0.8-1_imnx_1.src.rpm md5sums of the packages: 815f374ddce259f675cf419d1af8494a samba-2.0.8-1_StackGuard_1.i386.rpm 4a555fdd722a26daa3070b0bbc954797 samba-client-2.0.8-1_StackGuard_1.i386.rpm 653dbfeddb84886f2e0004c5bb18fee9 samba-common-2.0.8-1_StackGuard_1.i386.rpm 1cbacbb5080c209a0c3af8c615eed528 samba-2.0.8-1_StackGuard_1.src.rpm 9110c5a65b0509f7c99b4bcedbe6f88a samba-2.0.8-1_imnx_1.i386.rpm bdf447deea150aa62e2f8fcbfffbcaee samba-client-2.0.8-1_imnx_1.i386.rpm fb48e8fe22f98ad2c48a1e981054d942 samba-common-2.0.8-1_imnx_1.i386.rpm dba71feca9def9b40f88d5d33efdf4ff samba-2.0.8-1_imnx_1.src.rpm Online version of all Immunix 6.2 updates and advisories: http://immunix.org/ImmunixOS/6.2/updates/ Online version of all Immunix 7.0-beta updates and advisories: http://immunix.org/ImmunixOS/7.0-beta/updates/ Online version of all Immunix 7.0 updates and advisories: http://immunix.org/ImmunixOS/7.0/updates/ NOTE: Ibiblio is graciously mirroring our updates, so if the links above are slow, please try: ftp://ftp.ibiblio.org/pub/Linux/distributions/immunix/ or one of the many mirrors available at: http://www.ibiblio.org/pub/Linux/MIRRORS.html