kpriv/pkgsrc
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
pkgsrc/net/samba35
History
taca aaeb833757 Update samba35 to 3.5.22, security release. 
==============================
                   Release Notes for Samba 3.5.22
			  August 05, 2013
                   ==============================


This is a security release in order to address
CVE-2013-4124 (Missing integer wrap protection in EA list reading can cause
server to loop with DOS).

o  CVE-2013-4124:
   All current released versions of Samba are vulnerable to a denial of
   service on an authenticated or guest connection. A malformed packet
   can cause the smbd server to loop the CPU performing memory
   allocations and preventing any further service.

   A connection to a file share, or a local account is needed to exploit
   this problem, either authenticated or unauthenticated if guest
   connections are allowed.

   This flaw is not exploitable beyond causing the code to loop
   allocating memory, which may cause the machine to exceed memory
   limits.


Changes since 3.5.21:
---------------------

o   Jeremy Allison <jra@samba.org>
    * BUG 10010: CVE-2013-4124: Missing integer wrap protection in EA list
      reading can cause server to loop with DOS.
2013-08-12 02:47:32 +00:00
..
patches Update samba35 to 3.5.22, security release. 2013-08-12 02:47:32 +00:00
buildlink3.mk Add a buildlink for anyone who needs samba 3.5 2012-03-18 17:31:53 +00:00
DEINSTALL.nss_winbind Sync net/samba35 with the below changes as it uses net/samba/options.mk. 2012-09-11 07:50:50 +00:00
distinfo Update samba35 to 3.5.22, security release. 2013-08-12 02:47:32 +00:00
hacks.mk
INSTALL.nss_winbind Sync net/samba35 with the below changes as it uses net/samba/options.mk. 2012-09-11 07:50:50 +00:00
Makefile Update samba35 to 3.5.22, security release. 2013-08-12 02:47:32 +00:00
PLIST Update to Samba 3.5.16 2012-07-07 12:35:53 +00:00
PLIST.Linux Add PLIST.Linux 2012-01-31 07:28:58 +00:00