Remote code execution vulnerability in Samba

The Samba 4.1.17, 4.0.25 and 3.6.25releases are available; they fix an unpleasant code-executionvulnerability. See thisRed Hat security blog entry for more information. "CVE-2015-0240is a security flaw in the smbd file server daemon. It can be exploited by amalicious Samba client, by sending specially-crafted packets to the Sambaserver. No [authentication] is required to exploit this flaw. It can result inremotely controlled execution of arbitrary code as root."