The remote host is missing updates announced in advisory GLSA 200711-29.

The Samba 3.0.27 ebuild that resolves both vulnerabilities is currently masked due to a regression in the patch for the second vulnerability. Since no working patch exists yet, all Samba users should upgrade to 3.0.26a-r2, which contains a fix for the first vulnerability (CVE-2007-5398): # emerge --sync # emerge --ask --oneshot --verbose '>=net-fs/samba-3.0.26a-r2' An update to this temporary GLSA will be sent when the second vulnerability will be fixed. http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200711-29 http://bugs.gentoo.org/show_bug.cgi?id=197519

Samba contains two buffer overflow vulnerabilities potentially resulting in the execution of arbitrary code, one of which is currently unfixed.