-----BEGIN PGP SIGNED MESSAGE-----

Subject: Caldera Security Advisory SA-1997.24: Vulnerability in Samba

Caldera Security Advisory SA-1997.24

Original report date:  27-Sep-1997
RPM build date:    01-Oct-1997
Advisory issue date:  07-Oct-1997
Last update:    17-Dec-1997

Topic: Vulnerability in the Samba package

I. Problem Description

  The Samba server had a buffer overflow problem that had various
  security related exploit possibilities. Details of the exploit had
  been made available on the Internet via the BUGTRAQ email list.

II. Impact

  The samba-1.9.16p7-1 package distributed on the following OpenLinux
  releases are vulnerable:

    Lite 1.1
    Base 1.1
    Standard 1.1

  This new Samba server has been found to function properly on all of
  the releases shown above.

III. Solution

  Install the new samba-1.9.17p2-1 package, as described below.

  Both source and binary packages are located on Caldera's FTP
  server (ftp.caldera.com):

  Binary files can be obtained at:
  ftp://ftp.caldera.com/pub/openlinux/updates/1.1/current/RPMS

  Source files can be obtained at:
  ftp://ftp.caldera.com/pub/openlinux/updates/1.1/current/SRPMS

  To install the update on  any OpenLinux 1.1 release
  use the following commands:

    /etc/rc.d/init.d/smb stop
    rpm -U RPMS/samba-1.9.17p2-1.i386.rpm
    mv /etc/smb.conf.rpmsave /etc/smb.conf

  The next step in the installation is to run lisa:

    lisa --daemons

  Scroll down to the entry reading "SMB server processes (Samba)"
  Mark this line using the space bar.(This toggles the state of
  the ONBOOT variable in /etc/sysconf/daemons/smb.)
  Exit the dialog by selecting the continue button and start
  samba.

  Samba will start when the machine is rebooted or can be
  started now by typing:

    /etc/rc.d/init.d/samba start
    

  The documentation in the new /etc/smb.conf.sample has been
  improved. It may be of help when setting up samba features
  with which you are unfamiliar.

  Please note the following filename changes:

  The names of the files in /etc/sysconfig/daemon/ and
  /etc/rc.d/init.d/ have changed from smb to samba.

  The default lock directory name /var/lock/samba/ has been
  changed to /var/lock/samba.d/.

  A default log directory named /var/log/samba.d has been
  added. If you are using the logrotate package, amend the
  logrotate.conf file to reflect this.

IV. References / Credits

  Fixes a security problem originally reported on BUGTRAQ@netspace.org
  and CERT Vendor-Initiated Bulletin VB-97.10.samba (October 3, 1997).
  Reported internally at Caldera as PR #984 and #1006.

  This and other Caldera security resources are located at:

    http://www.caldera.com/tech-ref/security/

V. PGP Signature

  This message was signed with the PGP key for security@caldera.com.

  This key can be obtained from:
    ftp://ftp.caldera.com/pub/pgp-keys/

  Or on an OpenLinux CDROM under:
    /OpenLinux/pgp-keys/

  $Id: SA-1997.24,v 1.8 1997/12/17 17:59:11 ron Exp ron $

-----BEGIN PGP SIGNATURE-----
Version: 2.6.2

iQCVAwUBNJgTG+n+9R4958LpAQGWFgP9GTCr0MZUWxolRt6jV7cUaNRzO+nP4eH8
1ztfvpMON6JmsEAio11uZKgMJj47HeklNwBq2DAlN7WAxJF7ICYPsa4C3qHqTpFa
QNZpE4W6PL0pYai5pVIrf06XXU64M9DIwEJ6CkBX31l70sRWVx+2qLL8gkzPxvUQ
ccGa9kDt8V4=
=9Z+T
-----END PGP SIGNATURE-----