--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2009-10172
2009-10-03 17:52:35
--------------------------------------------------------------------------------

Name        : samba
Product     : Fedora 10
Version     : 3.2.15
Release     : 0.36.fc10
URL         : https://www.samba.org/
Summary     : The Samba Suite of programs
Description :

Samba is the suite of programs by which a lot of PC-related machines
share files, printers, and other information (such as lists of
available files and printers). The Windows NT, OS/2, and Linux
operating systems support this natively, and add-on packages can
enable the same thing for DOS, Windows, VMS, UNIX of all kinds, MVS,
and more. This package provides an SMB/CIFS server that can be used to
provide network services to SMB/CIFS clients.
Samba uses NetBIOS over TCP/IP (NetBT) protocols and does NOT
need the NetBEUI (Microsoft Raw NetBIOS frame) protocol.

--------------------------------------------------------------------------------
Update Information:

Security Release, fixes CVE-2009-2813, CVE-2009-2948 and CVE-2009-2906
--------------------------------------------------------------------------------
ChangeLog:

* Thu Oct  1 2009 Guenther Deschner  - 3.2.15-0.36
- Update to 3.2.15
- Security Release, fixes CVE-2009-2813, CVE-2009-2948 and CVE-2009-2906
* Fri Sep  4 2009 Simo Sorce  - 3.2.14-0.35
- Update to 3.2.14
* Tue Jun 16 2009 Guenther Deschner  - 3.2.12-0.34
- Update to 3.2.12
- Update pam_winbind.conf file
* Tue Apr 28 2009 Guenther Deschner  - 3.2.11-0.31
- Fix "force user"
- resolves: #497708
* Sun Apr 19 2009 Guenther Deschner  - 3.2.11-0.30
- Update to 3.2.11
* Wed Apr  1 2009 Guenther Deschner  - 3.2.10-0.29
- Update to 3.2.10
- resolves: #489547
* Thu Mar 26 2009 Simo Sorce  - 3.2.8-0.28
- Fix nmbd init script nmbd reload was causing smbd not nmbd to reload the
  configuration
- Fix upstream bug 6224, nmbd was waiting 5+ minutes before running elections on
  startup, causing your own machine not to show up in the network for 5 minutes
  if it was the only client in that workgroup (fix committed upstream)
* Thu Mar  5 2009 Guenther Deschner  - 3.2.8-0.27
- Add libcap-devel to requires list (resolves: #488559)
* Tue Feb  3 2009 Guenther Deschner  - 3.2.8-0.26
- Update to 3.2.8
- Fix cups connections (resolves: #479743)
- Remove bogus perl dependencies (resolves: #473051)
* Mon Jan  5 2009 Guenther Deschner  - 3.2.7-0.25
- Update to 3.2.7 (Security fix for CVE-2009-0022)
* Wed Dec 10 2008 Guenther Deschner  - 3.2.6-0.24
- Update to 3.2.6
* Thu Nov 27 2008 Guenther Deschner  - 3.2.5-0.23
- Update to 3.2.5 (Security fix for CVE-2008-4314)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #523752 - CVE-2009-2813 Samba: Share restriction bypass via home-less directory user account(s)
        https://bugzilla.redhat.com/show_bug.cgi?id=523752
  [ 2 ] Bug #526074 - CVE-2009-2948 samba: information disclosure in suid mount.cifs
        https://bugzilla.redhat.com/show_bug.cgi?id=526074
  [ 3 ] Bug #526645 - CVE-2009-2906 samba: infinite loop flaw in smbd on unexpected oplock break notification reply
        https://bugzilla.redhat.com/show_bug.cgi?id=526645
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update samba' at the command line.
For more information, refer to "Managing Software with yum",
available at .

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
--------------------------------------------------------------------------------

_______________________________________________
Fedora-package-announce mailing list
Fedora-package-announce@redhat.com
http://www.redhat.com/mailman/listinfo/fedora-package-announce