LinuxSecurity.com
Share your story
The central voice for Linux and Open Source security news
Home News Topics Advisories HOWTOs Features Newsletters About Register

Welcome!
Sign up!
EnGarde Community
Login
Polls
What is the most important Linux security technology?
 
Advisories
Community
Linux Events
Linux User Groups
Link to Us
Security Center
Book Reviews
Security Dictionary
Security Tips
SELinux
White Papers
Featured Blogs
All About Linux
DanWalsh LiveJournal
Securitydistro
Latest Newsletters
Linux Advisory Watch: September 26th, 2014
Linux Security Week: September 22nd, 2014
Subscribe
LinuxSecurity Newsletters
E-mail:
Choose Lists:
About our Newsletters
RSS Feeds
Get the LinuxSecurity news you want faster with RSS
Powered By

  
Fedora Core 5 Update: samba-3.0.24-7.fc5 Print E-mail
User Rating:      How can I rate this item?
Posted by Benjamin D. Thomas   
Fedora Bugfixes against the recent security updates for Fedora Core 5 samba-3.0.24-7.fc5 package. Also this update fixes a samba denial of service vulnerability.
---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2007-568
2007-06-06
---------------------------------------------------------------------

Product     : Fedora Core 5
Name        : samba
Version     : 3.0.24
Release     : 7.fc5
Summary     : The Samba SMB server.
Description :

Samba is the suite of programs by which a lot of PC-related machines
share files, printers, and other information (such as lists of
available files and printers). The Windows NT, OS/2, and Linux
operating systems support this natively, and add-on packages can
enable the same thing for DOS, Windows, VMS, UNIX of all kinds, MVS,
and more. This package provides an SMB server that can be used to
provide network services to SMB (sometimes called "Lan Manager")
clients. Samba uses NetBIOS over TCP/IP (NetBT) protocols and does NOT
need the NetBEUI (Microsoft Raw NetBIOS frame) protocol.

---------------------------------------------------------------------
Update Information:

Bugfixes against the recent security updates.
---------------------------------------------------------------------
* Tue Jun  5 2007 Simo Sorce  3.0.24-7.fc5
- CVE-2007-2447 patch v2
- CVE-2007-2444 patch v2
  not security problems, just bugs in the patches
* Mon May 14 2007 Simo Sorce  3.0.24-5.fc5
- Security fixes forCVE-2007-2444
  CVE-2007-2446
  CVE-2007-2447
  CVE-2007-2444
  CVE-2007-2446
  CVE-2007-2447
* Thu Apr  5 2007 Simo Sorce  3.0.24-4.fc5
- sync up patches from the rawhide packages
* Wed Mar 28 2007 Simo Sorce  3.0.24-3.fc5
- add patch for bug 176649
* Mon Mar 26 2007 Simo Sorce 
- remove patch for bug 106483 as it introduces a new bug that prevents
  the use of a credentials file with the smbclient tar command
* Fri Mar 23 2007 Simo Sorce  3.0.24-2.fc5
- fix log rotate script to no kill -HUP samba daemons
* Fri Mar 23 2007 Simo Sorce  3.0.24-2.fc5
- A newer cups lib introduced new symbols now we depend on,
  adjust dependencies to require the latest cups-libs package.
* Wed Feb  7 2007 Jay Fenlason  3.0.24-1.fc5
- New upstream release
- Update the -man patch to work with 3.0.24
- This release
  fixes CVE-2007-0452 Samba smbd denial of service
* Tue Sep 26 2006 Jay Fenlason  3.0.23c-1.fc5
- Include the newer smb.init that includes the configtest option
- Upgrade to 3.0.23c, obsoleting the -samr_alias patch.
* Wed Aug  9 2006 Jay Fenlason  3.0.23b-1.fc5
- New upstream release, fixing some annoying bugs.
* Mon Jul 24 2006 Jay Fenlason  3.0.23a-1.fc5.1
- Fix the -logfiles patch to close
  bz#199607 Samba compiled with wrong log path.
  bz#199206 smb.conf has incorrect log file path
* Mon Jul 24 2006 Jay Fenlason  3.0.23a-1.fc5
- Upgrade to new upstream 3.0.23a
- include upstream samr_alias patch
* Wed Jul 12 2006 Jay Fenlason  3.0.23-1.fc5
- Upgrade to 3.0.23 to close
  bz#197836 CVE-2006-3403 Samba denial of service
- include related spec file, filter-requires-samba.sh and patch changes
  from rawhide.
- include the fixed smb.init file from rawhide, closing
  bz#182560 Wrong retval for initscript when smbd is dead

---------------------------------------------------------------------
This update can be downloaded from:
    http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/

c5360543c98d8f8d2d5ad6609d9a9078114c4a86  SRPMS/samba-3.0.24-7.fc5.src.rpm
c5360543c98d8f8d2d5ad6609d9a9078114c4a86  noarch/samba-3.0.24-7.fc5.src.rpm
6c02cbafc3c129e0515488cb57fc76a9c78340e2  ppc/samba-common-3.0.24-7.fc5.ppc.rpm
ed728c1933286375bb48f5591b335d34ffe2f016  ppc/samba-3.0.24-7.fc5.ppc.rpm
ada4aa43c3e709b1e291f42c99dfb737813b27c8  ppc/samba-swat-3.0.24-7.fc5.ppc.rpm
0386c74f3d585af3a6e61347838ce60d497ddbdb  ppc/samba-client-3.0.24-7.fc5.ppc.rpm
e0c875333af101d4dca39d2533f654bd193d1de9  ppc/debug/samba-debuginfo-3.0.24-7.fc5.ppc.rpm
0dfccc0deecec3ca893d74e985f506c3debb88d0  x86_64/samba-common-3.0.24-7.fc5.x86_64.rpm
9db4a1fdb687793e2bfbbc64fd528c836562740a  x86_64/samba-3.0.24-7.fc5.x86_64.rpm
6a5860024d641c76d50189a23c1c88f298db8330  x86_64/samba-swat-3.0.24-7.fc5.x86_64.rpm
7e7b173468a31ddc8b3cb06359fdb6bedbf3d178  x86_64/debug/samba-debuginfo-3.0.24-7.fc5.x86_64.rpm
d121e2cefc5f7a61abe56988c17d90b60aa12612  x86_64/samba-client-3.0.24-7.fc5.x86_64.rpm
0f0fc963dd04ea5ac701c7d2471dbfde7bbe0aea  i386/samba-3.0.24-7.fc5.i386.rpm
567ec76355952830be44216d1c716fa02ce5dcc1  i386/samba-client-3.0.24-7.fc5.i386.rpm
504746b7b276aaaaa7e6a78c347a3c94d317d57c  i386/debug/samba-debuginfo-3.0.24-7.fc5.i386.rpm
69f0a455edcb5b2589791c3587e04c91ed4868cc  i386/samba-swat-3.0.24-7.fc5.i386.rpm
745c23f5b623c497da991a8676869616b97bbfa1  i386/samba-common-3.0.24-7.fc5.i386.rpm

This update can be installed with the 'yum' update program.  Use 'yum update
package-name' at the command line.  For more information, refer to 'Managing
Software with yum,' available at http://fedora.redhat.com/docs/yum/.
---------------------------------------------------------------------

_______________________________________________
Fedora-package-announce mailing list
Fedora-package-announce@redhat.com
http://www.redhat.com/mailman/listinfo/fedora-package-announce
 
< Prev   Next >
    
Partner

 

Latest Features
Peter Smith Releases Linux Network Security Online
Securing a Linux Web Server
Password guessing with Medusa 2.0
Password guessing as an attack vector
Squid and Digest Authentication
Squid and Basic Authentication
Demystifying the Chinese Hacking Industry: Earning 6 Million a Night
Free Online security course (LearnSIA) - A Call for Help
What You Need to Know About Linux Rootkits
Review: A Practical Guide to Fedora and Red Hat Enterprise Linux - Fifth Edition
Yesterday's Edition
Honeypot Snares Two Bots Exploiting Bash Vulnerability
CloudFlare Rolls Out Free SSL
Partner Sponsor

Community | HOWTOs | Blogs | Features | Book Reviews | Networking
 Security Projects |  Latest News |  Newsletters |  SELinux |  Privacy |  Home
 Hardening |   About Us |   Advertise |   Legal Notice |   RSS |   Guardian Digital
(c)Copyright 2014 Guardian Digital, Inc. All rights reserved.