diff options
author | Karolin Seeger <kseeger@samba.org> | 2009-06-22 23:04:29 +0200 |
---|---|---|
committer | Karolin Seeger <kseeger@samba.org> | 2009-06-29 12:50:49 +0200 |
commit | 97e91b97c31cbb2c81acebe148bf7084f5effda8 (patch) | |
tree | ab6cf4c40bf54063a86d21e47024b46896021512 | |
parent | 4a27650cd5d1b02bc04489916009e69e5461e18b (diff) | |
download | samba-97e91b97c31cbb2c81acebe148bf7084f5effda8.tar.gz samba-97e91b97c31cbb2c81acebe148bf7084f5effda8.tar.xz samba-97e91b97c31cbb2c81acebe148bf7084f5effda8.zip |
WHATSNEW: Update changes.
Karolin
(cherry picked from commit c5a0590a2efb9c0e8565e822dfc7cea92af0bece)
-rw-r--r-- | WHATSNEW.txt | 12 |
1 files changed, 9 insertions, 3 deletions
diff --git a/WHATSNEW.txt b/WHATSNEW.txt index 173b21f11e5..8b34c13bd46 100644 --- a/WHATSNEW.txt +++ b/WHATSNEW.txt @@ -4,14 +4,19 @@ ============================== -This is a security release in order to address CVE-2009-1886. +This is a security release in order to address CVE-2009-1886 and CVE-2009-1888. - o CVE-2009-1886. + o CVE-2009-1886: In Samba 3.2.0 to 3.2.12 (inclusive), the smbclient commands dealing with file names treat user input as a format string to asprintf. With a maliciously crafted file name smbclient can be made to execute code triggered by the server. + o CVE-2009-1888: + In Samba 3.0.31 to 3.3.5 (inclusive), an uninitialized read of a data + value can potentially affect access control when "dos filemode" + is set to "yes". + ###################################################################### Changes @@ -21,8 +26,9 @@ Changes since 3.2.12 -------------------- -o Volker Lendecke <vl@samba.org> +o Jeremy Allison <jra@samba.org> * Fix for CVE-2009-1886. + * Fix for CVE-2009-1888. ###################################################################### |