TITLE: Internet Express for Tru64 UNIX - SSRT071424: Samba File and Print Server for Windows[R], Multiple Vulnerabilities

Copyright (c) Hewlett-Packard Company 2007.  All rights reserved.


PRODUCT:    Samba File and Print Server for Windows[R] 
SOURCE:     Hewlett-Packard Company

ECO INFORMATION:

     ECO Name: IX66-SAMBA-20070530.tar.gz
     ECO Kit Approximate Size:  65.3MB
     Kit Applies To:  Internet Express for Tru64 UNIX v 6.6

     ECO Kit CHECKSUMS:
	/usr/bin/sum results:  
	29468  63773

	/usr/bin/cksum results: 
	3883680775 65303379

	MD5 results:   
	8561874f5e229619de338c400b5b983f

	SHA1 results:
	a8a0acd64a5aed9e5dba50b1ebad6d2d16f0ddeb


ECO KIT SUMMARY:

A setld-based patch kit exists for Internet Express for Tru64 UNIX v 6.6
that contains solutions to the following problem(s):

Multiple potential vulnerabilities have been reported on Samba File and Print Server 
for Windows (Samba) provided with Internet Express for Tru64 UNIX (IX) v 6.6. 
The potential vulnerabilities could be exploited by a remote, unauthenticated 
user to execute arbitrary commands; or by a local, unauthorized user to gain privilege 
elevation.


The patches in this kit will also be available in the next mainstream
patch kit - Internet Express for Tru64 UNIX v 6.7.


Special Installation Instructions

Installing the Samba Binaries:
1) unzip the Samba tar file:
   gunzip IX66-SAMBA-20070530.tar.gz

2) untar the Samba tar file.
   tar xvf IX66-SAMBA-20070530.tar

2) use setld command to install the kit
   setld -l .

Setld prompts you  to select the subsets to be installed. Select
option '3' to install all the subsets. 

SUPERSEDE INFORMATION:

  None


KNOWN PROBLEMS WITH THE PATCH KIT:

None.


Affected system files

This patch provides the following: 
- Samba v 3.0.25 
- Samba sources and license agreement 




[R] UNIX is a registered trademark in the United States and other countries 
licensed exclusively through X/Open Company Limited.

Copyright Hewlett-Packard Company 2007.  All Rights reserved.