forwarded 700729 https://bugzilla.samba.org/show_bug.cgi?id=9668 thanks
Quoting Gaudenz Steinlin (gaud...@debian.org): > > Hi > > I can confirm that this bug was introduced by the security fixes in > samba/2:3.6.6-5. Downgrading to samba/2:3.6.6-4 fixes the problem. I'm > running swat from inetd as root. > > I would consider this as an RC bug please increase the severity > accodingly if you agree to get this fixed before the release. Thanks for confirming this, Gaudenz. I hereby link this bug report with upstream and will monitor upstream activity on this. If a fix pops up, it will be proposed for wheezy. Please note that upstream is seriously considering to abandon swat, which is very loosely maintained and a potential can of security bugs. I would encourage anyone relying on it for production use to consider switching to another tool or utility (no idea which one, though).
signature.asc
Description: Digital signature
