diff options
author | Gerald (Jerry) Carter <jerry@samba.org> | 2007-11-14 21:10:29 -0600 |
---|---|---|
committer | Gerald (Jerry) Carter <jerry@samba.org> | 2007-11-14 21:10:29 -0600 |
commit | 6d9de2b0b3fb102762d8e17b4398e9d2d4e6bd65 (patch) | |
tree | 9126998f8acaac8100b56cba382da6e0007cf155 /WHATSNEW.txt | |
parent | 706384a4f63961ee3ccd2125c25453de43f7257a (diff) | |
download | samba-3.0.27.tar.gz samba-3.0.27.tar.xz samba-3.0.27.zip |
Update release notes for 3.0.27samba-3.0.27
Diffstat (limited to 'WHATSNEW.txt')
-rw-r--r-- | WHATSNEW.txt | 41 |
1 files changed, 37 insertions, 4 deletions
diff --git a/WHATSNEW.txt b/WHATSNEW.txt index d2f6020f59c..5f5e8304483 100644 --- a/WHATSNEW.txt +++ b/WHATSNEW.txt @@ -1,12 +1,45 @@ + ============================== + Release Notes for Samba 3.0.27 + Nov 15, 2007 + ============================== + +Samba 3.0.27 is a security release in order to address the following +defects: + + o CVS-2007-4572 + Stack buffer overflow in nmbd's logon request processing. + + o CVE-2007-5398 + Remote code execution in Samba's WINS server daemon (nmbd) + when processing name registration followed name query requests. + +The original security announcement for this and past advisories can +be found http://www.samba.org/samba/security/ + +###################################################################### +Changes +####### + +Changes since 3.0.26a +--------------------- + +o Jeremy Allison <jra@samba.org> + * Fix for CVS-2007-4572. + * Fix for CVE-2007-5398. + + +o Simo Sorce <idra@samba.org> + * Additional fixes for CVS-2007-4572. + + +Release notes for older releases follow: + + -------------------------------------------------- =============================== Release Notes for Samba 3.0.26a Sep 11, 2007 =============================== -This is a bug fix release of the Samba 3.0.26 code base and is the -version that servers should be run for for all current bug Samba 3.0.x -fixes. - Major bug fixes included in Samba 3.0.26a are: o Memory leaks in Winbind's IDMap manager. |