Samba 3.2.0 uses weak permissions (0666) for the (1) group_mapping.tdb and (2) group_mapping.ldb files, which allows local users to modify the membership of Unix groups.
Debian Bug report logs -
#496073
samba: group_mappingldb created world writeable after manual deletion
Package:
samba;
Maintainer for samba is Debian Samba Maintainers <pkg-samba-maint@listsaliothdebianorg>; Source for samba is src:samba (PTS, buildd, popcon)
Reported by: Sascha Herrmann <sh_bugs@nttcablede>
Dat ...