2010年3月10日

[installer 2279] samba-3.3.12, 3.4.7, 3.5.2

samba-3.3.12, 3.4.7, 3.5.2 出ています。

前のバージョンで入り込んだセキュリティホールの修正です。
http://secunia.com/advisories/38804/
参照のこと。

パッチも出ています。

Samba 3.3.11:
http://us1.samba.org/samba/ftp/patches/security/samba-3.3.11-CVE-2010-0728.patch

Samba 3.4.6:
http://us1.samba.org/samba/ftp/patches/security/samba-3.4.6-CVE-2010-0728.patch

Samba 3.5.0:
http://us1.samba.org/samba/ftp/patches/security/samba-3.5.0-CVE-2010-0728.patch


☆ samba-3.3.12
http://samba.org/
http://www.samba.org/samba/ftp/samba-3.3.12.tar.gz
ftp://ftp.samba.org/pub/samba/samba-3.3.12.tar.gz
ftp://ftp.samba.gr.jp/pub/samba/samba-3.3.12.tar.gz

==============================
Release Notes for Samba 3.3.12
March 8, 2010
==============================


This is a security release in order to address CVE-2010-0728.


o CVE-2010-0728:
In Samba releases 3.5.0, 3.4.6 and 3.3.11, new code
was added to fix a problem with Linux asynchronous IO handling.
This code introduced a bad security flaw on Linux platforms if the
binaries were built on Linux platforms with libcap support.
The flaw caused all smbd processes to inherit CAP_DAC_OVERRIDE
capabilities, allowing all file system access to be allowed
even when permissions should have denied access.


Changes since 3.5.0
-------------------


o Jeremy Allison <jra@xxxxx>
* BUG 7222: Fix for CVE-2010-0728.


☆ samba-3.4.7
http://samba.org/
http://www.samba.org/samba/ftp/samba-3.4.7.tar.gz
ftp://ftp.samba.org/pub/samba/samba-3.4.7.tar.gz
ftp://ftp.samba.gr.jp/pub/samba/samba-3.4.7.tar.gz

=============================
Release Notes for Samba 3.4.7
March 8, 2010
=============================


This is a security release in order to address CVE-2010-0728.


o CVE-2010-0728:
In Samba releases 3.5.0, 3.4.6 and 3.3.11, new code
was added to fix a problem with Linux asynchronous IO handling.
This code introduced a bad security flaw on Linux platforms if the
binaries were built on Linux platforms with libcap support.
The flaw caused all smbd processes to inherit CAP_DAC_OVERRIDE
capabilities, allowing all file system access to be allowed
even when permissions should have denied access.


Changes since 3.5.0
-------------------


o Jeremy Allison <jra@xxxxx>
* BUG 7222: Fix for CVE-2010-0728.


☆ samba-3.5.1
http://samba.org/
http://www.samba.org/samba/ftp/samba-3.5.1.tar.gz
ftp://ftp.samba.org/pub/samba/samba-3.5.1.tar.gz
ftp://ftp.samba.gr.jp/pub/samba/samba-3.5.1.tar.gz

=============================
Release Notes for Samba 3.5.1
March 8, 2010
=============================


This is a security release in order to address CVE-2010-0728.


o CVE-2010-0728:
In Samba releases 3.5.0, 3.4.6 and 3.3.11, new code
was added to fix a problem with Linux asynchronous IO handling.
This code introduced a bad security flaw on Linux platforms if the
binaries were built on Linux platforms with libcap support.
The flaw caused all smbd processes to inherit CAP_DAC_OVERRIDE
capabilities, allowing all file system access to be allowed
even when permissions should have denied access.


Changes since 3.5.0
-------------------


o Jeremy Allison <jra@xxxxx>
* BUG 7222: Fix for CVE-2010-0728.

----
こがよういちろう


投稿者 xml-rpc : 2010年3月10日 10:13
役に立ちました?:
過去のフィードバック 平均:(0) 総合:(0) 投票回数:(0)
本記事へのTrackback: http://hoop.euqset.org/blog/mt-tb2006.cgi/94016
トラックバック
コメント
コメントする




画像の中に見える文字を入力してください。