Security Information / 1998 / Security Information -- samba

Debian Security Advisory

samba -- unsafe temp files

Date Reported:

18 Nov 1998

Affected Packages:

samba

Vulnerable:

No

Security database references:

No other external database security references currently available.

More information:

There have been reports that some Linux distributions are affected by a vulnerability in samba. There are two issues:

• the wsmbconf program (which is still a prototype application not meant for general release) is unsafe. Debian does not distribute this program.
• some distributions used a world-writable directory without a t bit. We use /var/tmp which does not suffer from this problem.

There is no need to upgrade your samba package.