Subject: CVS commit: pkgsrc/net/samba
To: None <pkgsrc-changes@netbsd.org>
From: Chris Pinnock <cjep@netbsd.org>
List: pkgsrc-changes
Date: 04/07/2003 19:30:48
Module Name: pkgsrc
Committed By: cjep
Date: Mon Apr 7 16:30:48 UTC 2003
Modified Files:
pkgsrc/net/samba: Makefile.common distinfo
Log Message:
Update to Samba 2.2.8a.
Changes since 2.2.8:
Digital Defense, Inc. has alerted the Samba Team to a serious
vulnerability in all stable versions of Samba currently shipping.
The Common Vulnerabilities and Exposures (CVE) project has assigned
the ID CAN-2003-0201 to this defect.
This vulnerability, if exploited correctly, leads to an anonymous
user gaining root access on a Samba serving system. All versions
of Samba up to and including Samba 2.2.8 are vulnerable. An active
exploit of the bug has been reported in the wild.
To generate a diff of this commit:
cvs rdiff -r1.7 -r1.8 pkgsrc/net/samba/Makefile.common
cvs rdiff -r1.27 -r1.28 pkgsrc/net/samba/distinfo
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.