[Samba] CVE-2008-1105
John Drescher
drescherjm at gmail.com
Fri Jun 6 01:30:48 GMT 2008
On Thu, Jun 5, 2008 at 7:27 PM, Derek <lists at reefer.co.nz> wrote:
> Hello list!
>
> Just wanted to confirm whether this CVE affects the 3.0.4 version of Samba..
>
> The samba.org website claims "This security advisory is applicable to all
> Samba 3.0.x releases to date"
>
> Yet the actual CVE [1] has "Versions: Samba 3.0.0 - 3.0.29 (inclusive)"
>
> The CVE suggests that the version 3.0.4 would not be affected, my confused!
>
Yes this really old version of samba is affected but this CVE and
quite a few others...
John
More information about the samba
mailing list