[Buildroot] [PATCH] package/samba4: security bump to version 4.9.6
thomas.petazzoni at bootlin.com
Wed Apr 10 14:00:47 UTC 2019
On Mon, 8 Apr 2019 12:49:52 +0200
Peter Korsgaard <peter at korsgaard.com> wrote:
> Fixes the following security vulnerabilities:
> - CVE-2019-3870:
> During the provision of a new Active Directory DC, some files in the private/
> directory are created world-writable.
> - CVE-2019-3880:
> Authenticated users with write permission can trigger a symlink traversal to
> write or detect files outside the Samba share.
> For more details, see the release notes:
> Signed-off-by: Peter Korsgaard <peter at korsgaard.com>
> package/samba4/samba4.hash | 4 ++--
> package/samba4/samba4.mk | 2 +-
> 2 files changed, 3 insertions(+), 3 deletions(-)
Applied to master, thanks.
Thomas Petazzoni, CTO, Bootlin
Embedded Linux and Kernel engineering
More information about the buildroot