HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running CIFS Server (Samba). This vulnerability may allow a remote unauthorized user to create a Denial of Service (DoS).
d93f014e03303ae3a2ce08541b9abd5e5de128a787d6d1db40edfad64f6436e9
Ubuntu Security Notice 419-1 - A flaw was discovered in Samba's file opening code, which in certain situations could lead to an endless loop, resulting in a denial of service. A format string overflow was discovered in Samba's ACL handling on AFS shares. Remote users with access to an AFS share could create crafted filenames and execute arbitrary code with root privileges.
e7febf342401d9eaf79330f215f0abcdd1c17532856508ac42dfe50ebce7e284
Mandriva Linux Security Advisory - A logic error in the deferred open code for smbd may allow an authenticated user to exhaust resources such as memory and CPU on the server by opening multiple CIFS sessions, each of which will normally spawn a new smbd process, and sending each connection into an infinite loop. The name of a file on the server's share is used as the format string when setting an NT security descriptor through the afsacl.so VFS plugin.
79f22ffaa9ce0e3537037b26164de8346063ae90e18bc9ca00754aa260337d75
Debian Security Advisory 1257-1 - Several remote vulnerabilities have been discovered in samba, a free implementation of the SMB/CIFS protocol, which may lead to the execution of arbitrary code or denial of service.
3b833c5f2326b67c9b1aac0c35214a834900e47eb5d521e30655f20b36fdc993
A logic error in the deferred open code can lead to an infinite loop in smbd. This affect Samba versions 3.0.6 through 3.0.23d. Patch included.
f7857b2a68d7a679f8925c8272b9cc6e79a032b0159f6cba512e0905b3125d31