diff options
| author | taca <taca> | 2011-02-28 14:34:09 +0000 |
|---|---|---|
| committer | taca <taca> | 2011-02-28 14:34:09 +0000 |
| commit | 8c81e57f7e51ca57aaae59d689e1bced680cae64 (patch) | |
| tree | 69b372b1bc5c1da8eeb4765f9e624711aadaac29 /graphics | |
| parent | 81ac24c8bca1614c8be7baf31e0618bffd109b8d (diff) | |
| download | pkgsrc-8c81e57f7e51ca57aaae59d689e1bced680cae64.tar.gz | |
Update samba33 pacakge to 3.3.15.
Release Announcements
=====================
Samba 3.5.7, 3.4.12 and 3.3.15 are security releases in order to
address CVE-2011-0719.
o CVE-2011-0719:
All current released versions of Samba are vulnerable to
a denial of service caused by memory corruption. Range
checks on file descriptors being used in the FD_SET macro
were not present allowing stack corruption. This can cause
the Samba code to crash or to loop attempting to select
on a bad file descriptor set.
A connection to a file share, or a local account is needed
to exploit this problem, either authenticated or unauthenticated
(guest connection).
Currently we do not believe this flaw is exploitable
beyond a crash or causing the code to loop, but on the
advice of our security reviewers we are releasing fixes
in case an exploit is discovered at a later date.
Changes
-------
o Jeremy Allison <jra at samba.org>
* BUG 7949: Fix DoS in Winbind and smbd with many file descriptors open.
Diffstat (limited to 'graphics')
0 files changed, 0 insertions, 0 deletions