do we have Patch for cve-2019-3824 in 3.x version

Andreas Schneider asn at samba.org
Fri Mar 15 10:12:40 UTC 2019


On Friday, March 15, 2019 10:54:09 AM CET Adarsha S via samba-technical wrote:
> Hi All,

Hi,

> Could you please let me know if patch for cve-2019-3824  is available for
> 3.x releases too.
> If yes could you please guide me to the right location where patch could be
> found.
> I couldnt find one under https://www.samba.org/samba/history/security.html

>From the CVE description:

    A flaw was found in the way an LDAP search expression could crash the
    shared LDAP server process of a samba AD DC in samba before version 4.10.

This means versions between 4.0.x and 4.10.0.


Samba 3.x did *NOT* offer a Samba AD DC implementation!


Best regards,



	Andreas


-- 
Andreas Schneider                      asn at samba.org
Samba Team                             www.samba.org
GPG-ID:     8DFF53E18F2ABC8D8F3C92237EE0FC4DCC014E3D





More information about the samba-technical mailing list