svn commit: samba-web r368 - in trunk: .

jerry at samba.org jerry at samba.org
Tue Oct 5 20:40:50 GMT 2004


Author: jerry
Date: 2004-10-05 20:40:50 +0000 (Tue, 05 Oct 2004)
New Revision: 368

WebSVN: http://websvn.samba.org/websvn/changeset.php?rep=samba-web&path=/trunk&rev=368&nolog=1

Log:
adding mention of errata for CAN-2004-0815
Modified:
   trunk/index.html


Changeset:
Modified: trunk/index.html
===================================================================
--- trunk/index.html	2004-10-05 14:00:17 UTC (rev 367)
+++ trunk/index.html	2004-10-05 20:40:50 UTC (rev 368)
@@ -9,6 +9,17 @@
 
     <h2>Current Release</h2>
 
+    <h4><a>05 October 2004</a></h4>
+    <p class="headline">ERRATE : Security Notice -- CVE CAN-2004-0815</p>
+
+    <p>The original notice for CAN-2004-0815 indicated that Samba 3.0.x <= 3.0.5
+       was vulnerable to the security issue.  After further research, Samba developers
+       have confirmed that only Samba 3.0.2a and earlier releases contain the exploitable
+       code.  A new <a href="/samba/ftp/patches/security/samba-3.0.2a-reduce_name.patch">patch
+       for Samba 3.0.2a and earlier</a> (<a href="/samba/ftp/patches/security/samba-3.0.2a-reduce_name.patch.asc">signature</
+a>)
+       has been posted.</p>
+
     <h4><a>30 September 2004</a></h4>
     <p class="headline">Security Notice -- CVE CAN-2004-0815</p>
 



More information about the samba-cvs mailing list