Subject: Samba insecurity in pkgsrc-2007Q3
To: None <pkgsrc-users@netbsd.org>
From: Chris Ross <cross+netbsd@distal.com>
List: pkgsrc-users
Date: 12/21/2007 09:48:05
I see a fix for this was checked into the pkgsrc trunk on 10-Dec.
Has this been requested for pullup into pkgsrc-2007Q3? Could that be
done?
Thanks much...
- Chris
Begin forwarded message:
> From: Charlie Root
> Date: December 21, 2007 03:15:59 EST
> To: root
> Subject: daily insecurity output for Fri Dec 21 03:15:00 EST 2007
>
>
> Running /etc/security.local:
> Package samba-3.0.26anb2 has a remote-code-execution vulnerability,
> see http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6015