Found by Codenomicon at the SNIA plugfest. openX packet with unicode bit set and 65535 bytes of 0xCC causes a glibc crash on Linux. As we can't fix glibc I have a patch for 3.5.x, 3.6.x and 4.0.x that Simo and I confirmed avoids the problem in Samba. Jeremy.