Red Hat Bugzilla – Bug 36424
security hole allows a user with a shell account to corrupt local devices
Last modified: 2007-03-26 23:43:36 EDT
(17th April 2001) Samba 2.0.8 released - SECURITY FIX
Samba 2.0.8 has been released. This release fixes a
locally exploitable security hole in Samba 2.0.7 that
allows a user with a shell account to corrupt local
devices (such as raw disks). Samba 2.2.0 includes all the
security fixes as well, so only install 2.0.8 if you do not
wish to upgrade to 2.2.x just yet.
Doh. Go for samba 2.0.9. :-/
[ http://lwn.net/daily/samba-2.0.9.php3 ]
Fixed in the samba-2.0.8 errata releases.