Download Samba 2.2.8

Samba is used to enable Unix-based systems to communicate with Windows. In this new release an important security leak has been fixed which was present up to and including release 2.2.7a. It is therefore strongly advised to update your server to this release. Besides closing this security hole, there are several updates to be found in this version which are described in the list of changes† Below is the announcement as it is on samba.org can be found:

(14th Mar, 2003) Security Release – Samba 2.2.8
A flaw has been detected in the Samba main smbd code which could allow an external attacker to remotely and anonymously gain Super User (root) privileges on a server running a Samba server. This flaw exists in previous versions of Samba from 2.0.x to 2.2.7a inclusive. This is a serious problem and all sites should either upgrade to Samba 2.2.8 immediately or prohibit access to TCP ports 139 and 445. The Release Notes are available on-line.

In addition to addressing this security issue, Samba 2.2.8 includes many unrelated improvements. These improvements result from our process of continuous quality assurance and code review, and are part of the Samba team’s commitment to excellence.