A security issue affects the following Ubuntu releases:
Ubuntu 4.10 (Warty Warthog)
The following packages are affected:
samba
The problem can be corrected by upgrading the affected package to version 3.0.7-1ubuntu6.3. In general, a standard system upgrade is sufficient to effect the necessary changes.
Details follow:
Greg MacManus discovered an integer overflow in Samba's smbd daemon. Requesting a very large number of access control descriptors from the server caused an integer overflow, which resulted in a memory allocation being too short, thus causing a buffer overflow. By sending carefully crafted data, an attacker could exploit this to execute arbitrary code on the server with full root permissions.