svn commit: samba-web r399 - in trunk: . history
deryck at samba.org
deryck at samba.org
Mon Nov 8 19:16:38 GMT 2004
Author: deryck
Date: 2004-11-08 19:16:38 +0000 (Mon, 08 Nov 2004)
New Revision: 399
WebSVN: http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=rev&root=samba-web&rev=399
Log:
Moving outdated release announcements to history given
today's release.
--deryck
Modified:
trunk/history/index.html
trunk/index.html
Changeset:
Modified: trunk/history/index.html
===================================================================
--- trunk/history/index.html 2004-11-08 19:05:56 UTC (rev 398)
+++ trunk/history/index.html 2004-11-08 19:16:38 UTC (rev 399)
@@ -6,9 +6,9 @@
<div class="latest">
<ul>
- <li>Latest Release — <a href="/samba/index.html#latest">Samba 3.0.8pre2</a></li>
- <li>Current Stable Release — <a href="#stable">Samba 3.0.7</a></li> <!-- Second link will point to #stable on this page when current
- release is a development release -->
+ <li>Latest Release — <a href="/samba/index.html#latest">Samba 3.0.8</a></li>
+ <li>Current Stable Release — <a href="/samba/index.html#latest">Samba 3.0.8</a></li>
+ <!-- Second link will point to #stable on this page when current release is a development release -->
</ul>
</div>
@@ -17,6 +17,50 @@
<h2>Previous Release Announcments</h2>
+<h4><a>26 October 2004</a></h4>
+<p class="headline">Samba 3.0.8pre2 Available for Download</p>
+
+<p>This is a preview release of the Samba 3.0.8 code base.
+It is <b>not</b> intended for production use but rather is
+provided to allow people to test the bug fixes and new
+features in the upcoming 3.0.8 release. Use at your own
+risk. (<a href="/samba/ftp/pre/WHATSNEW-3-0-8pre2.txt">release notes</a>)</p>
+
+<p>The <a href="/samba/ftp/pre/samba-3.0.8pre2.tar.gz">Samba 3.0.8pre2 source code</a>
+can be downloaded now. The
+<a href="/samba/ftp/pre/samba-3.0.8pre2.tar.asc">GnuPG signature for the uncompressed tarball</a>
+is available for download. RPMS for Redhat 9 and Fedora Core 2 are also
+<a href="http://www.samba.org/~jerry/RPMS/samba/">currently available</a>.</p>
+
+
+<h4><a>05 October 2004</a></h4>
+<p class="headline">ERRATA : Security Notice -- CVE CAN-2004-0815</p>
+
+<p>The original notice for CAN-2004-0815 indicated that Samba 3.0.x <= 3.0.5
+was vulnerable to the security issue. After further research, Samba developers
+have confirmed that only Samba 3.0.2a and earlier releases contain the exploitable
+code. A new <a href="/samba/ftp/patches/security/samba-3.0.2a-reduce_name.patch">patch
+for Samba 3.0.2a and earlier</a>
+(<a href="/samba/ftp/patches/security/samba-3.0.2a-reduce_name.patch.asc">signature</a>)
+has been posted.</p>
+
+
+<h4><a>30 September 2004</a></h4>
+<p class="headline">Security Notice -- CVE CAN-2004-0815</p>
+
+<p>A security vulnerability has been located in Samba 2.2.x <= 2.2.11
+and Samba 3.0.x <= 3.0.5. A remote attacker may be able to gain
+access to files which exist outside of the share's defined path. Such
+files must still be readable by the account used for the connection.</p>
+
+<p><a href="/samba/ftp/samba-2.2.12.tar.gz">Samba 2.2.12</a> (<a href="/samba/ftp/samba-2.2.12.tar.asc">signature</a>)
+has been released to address this issue in the 2.2.x release series. A
+<a href="/samba/ftp/patches/security/samba-3.0.5-reduce_name.patch">patch
+ for Samba 3.0.5 and earlier</a>
+(<a href="/samba/ftp/patches/security/samba-3.0.5-reduce_name.patch.asc">signature</a>)
+is available as well.</p>
+
+
<h4>24 September 2004</h4>
<p class="headline">Samba 3.0.8pre1 Available for Download</p>
@@ -31,7 +75,6 @@
available for download. RPMS for Redhat 9 and Fedora Core 2 are
also <a href="http://www.samba.org/~jerry/RPMS/samba/">currently available</a>.</p>
-
<h4><a name="stable">13 September 2004</a></h4>
@@ -223,36 +266,4 @@
notes</a> are available on-line as well.</p>
-<h4>8 September 2003</h4>
-<p class="headline">Samba-3.0.0 RC3 available for download</p>
-
-<p>The third release candidate of the Samba 3.0.0 code base is now
-available for download. A release candidate implies that the code
-is very close to a final release, but remember that this is still a
-non-production snapshot intended for testing purposes. Use at your
-own risk. The <a href="/samba/ftp/rc/">source code and GnuPG
-signatures</a> can be found on Samba mirrors. RedHat RPMS for 7.3,
-8.0 and 9.0 are also available in the <a href=
-"/samba/ftp/Binary_Packages/RedHat/">Binary_Packages</a> download
-area. Packages for other platforms will follow shortly. The
-<a href="/samba/whatsnew/samba-3.0.0rc3.html">full release
-notes</a> are available on-line as well.</p>
-
-
-<h4>29 August 2003</h4>
-<p class="headline">Samba-3.0.0 RC2 available for download</p>
-
-<p>The second release candidate of the Samba 3.0.0 code base is now
-available for download. A release candidate implies that the code
-is very close to a final release, but remember that this is still a
-non-production snapshot intended for testing purposes. Use at your
-own risk. The <a href="/samba/ftp/rc/">source code and GnuPG
-signatures</a> can be found on Samba mirrors. RedHat RPMS for 7.3,
-8.0 and 9.0 are also available in the <a href=
-"/samba/ftp/Binary_Packages/RedHat/">Binary_Packages</a> download
-area. Packages for other platforms will follow shortly. The
-<a href="/samba/whatsnew/samba-3.0.0rc2.html">full release
-notes</a> are available on-line as well.</p>
-
-
<!--#include virtual="footer_history.html" -->
Modified: trunk/index.html
===================================================================
--- trunk/index.html 2004-11-08 19:05:56 UTC (rev 398)
+++ trunk/index.html 2004-11-08 19:16:38 UTC (rev 399)
@@ -25,61 +25,7 @@
<a href="http://download.samba.org/samba/ftp/Binary_Packages/">Binary_Packages
download area</a>.</p>
- <p class="headline">Security Notice -- CVE CAN-2004-0930</p>
- <p>A security vulnerability has been located in Samba 3.0.x <= 3.0.7.
- A bug in the input validation routines used to match
- filename strings containing wildcard characters may allow
- a user to consume more than normal amounts of CPU cycles
- thus impacting the performance and response of the server.
- In some circumstances the server can become entirely
- unresponsive. The <a href="/samba/security/CAN-2004-0930.html">full security announcement</a>
- is available online.</p>
-
- <p>A <a href="/samba/ftp/patches/security/samba-3.0.7-CAN-2004-0930.patch">patch
- for Samba 3.0.7</a> (<a href="/samba/ftp/patches/security/samba-3.0.7-CAN-2004-0930.patch.asc">signature</a>)
- is available for those not wishing to upgrade to Samba 3.0.8.</p>
-
- <h4><a>26 October 2004</a></h4>
- <p class="headline">Samba 3.0.8pre2 Available for Download</p>
-
- <p>This is a preview release of the Samba 3.0.8 code base.
- It is <b>not</b> intended for production use but rather is
- provided to allow people to test the bug fixes and new
- features in the upcoming 3.0.8 release. Use at your own
- risk. (<a href="/samba/ftp/pre/WHATSNEW-3-0-8pre2.txt">release notes</a>)</p>
-
- <p>The <a href="/samba/ftp/pre/samba-3.0.8pre2.tar.gz">Samba 3.0.8pre2
- source code</a> can be downloaded now. The <a href="/samba/ftp/pre/samba-3.0.8pre2.tar.asc">GnuPG
- signature for the uncompressed tarball</a> is available for download. RPMS for
- Redhat 9 and Fedora Core 2 are also <a href="http://www.samba.org/~jerry/RPMS/samba/">currently available</a>.</p>
-
-
- <h4><a>05 October 2004</a></h4>
- <p class="headline">ERRATA : Security Notice -- CVE CAN-2004-0815</p>
-
- <p>The original notice for CAN-2004-0815 indicated that Samba 3.0.x <= 3.0.5
- was vulnerable to the security issue. After further research, Samba developers
- have confirmed that only Samba 3.0.2a and earlier releases contain the exploitable
- code. A new <a href="/samba/ftp/patches/security/samba-3.0.2a-reduce_name.patch">patch
- for Samba 3.0.2a and earlier</a> (<a href="/samba/ftp/patches/security/samba-3.0.2a-reduce_name.patch.asc">signature</a>)
- has been posted.</p>
-
- <h4><a>30 September 2004</a></h4>
- <p class="headline">Security Notice -- CVE CAN-2004-0815</p>
-
- <p>A security vulnerability has been located in Samba 2.2.x <= 2.2.11
- and Samba 3.0.x <= 3.0.5. A remote attacker may be able to gain
- access to files which exist outside of the share's defined path. Such
- files must still be readable by the account used for the connection.</p>
-
- <p><a href="/samba/ftp/samba-2.2.12.tar.gz">Samba 2.2.12</a> (<a href="/samba/ftp/samba-2.2.12.tar.asc">signature</a>)
- has been released to address this issue in the 2.2.x release series. A
- <a href="/samba/ftp/patches/security/samba-3.0.5-reduce_name.patch">patch
- for Samba 3.0.5 and earlier</a> (<a href="/samba/ftp/patches/security/samba-3.0.5-reduce_name.patch.asc">signature</a>)
- is available as well.</p>
-
-
<h4>24 September 2004</h4>
<p class="headline">Samba 3.1.0 Available for Download</p>
More information about the samba-cvs
mailing list