[Samba] SAMBA 2.07 Question

Robert Buckner buckner at us.ibm.com
Tue Apr 8 20:33:52 GMT 2003


We are currently running SAMBA 2.07 on our AIX 4.3.3 UNIX systems.  We just
received the following:

OpenPKG Security Advisory OpenPKG-SA-2003.028: samba - remote root exploit

Does this affect SAMBA 2.07? This is all that I see affected:

OpenPKG Security Advisory                            The OpenPKG Project
http://www.openpkg.org/security.html              http://www.openpkg.org
openpkg-security at openpkg.org                         openpkg at openpkg.org
OpenPKG-SA-2003.028                                          07-Apr-2003

Package:             samba
Vulnerability:       remote root exploit
OpenPKG Specific:    no

Affected Releases:   Affected Packages:          Corrected Packages:
OpenPKG CURRENT      <= samba-2.2.8-20030405     >= samba-2.2.8a-20030407
OpenPKG 1.2          <= samba-2.2.7a-1.2.1       >= samba-2.2.7a-1.2.2
OpenPKG 1.1          <= samba-2.2.5-1.1.2        >= samba-2.2.5-1.1.3

What are your recommendations? I realize we are downlevel (2.07) but is
this level affected by the "remote root exploit"? Should we ugrade, and if
so, to which level?  2.2.7? 2.2.8? Is the upgrade transparent(i.e. is this
a fairly simple process or involved)?

Thank you for your prompt response.

Feel free to call me or e-mail me with any questions you may have.

- Robert

Developer Relations
IBM Austin
Bldg: 08 8B-065
buckner at us.ibm.com
Phone: 512~823~6708  (T/L 793~6708)
Cell: 512~632~5791

More information about the samba mailing list