projects / openwrt / staging / lynxis.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d6d3db0) | patch
samba36: fix some security problems
authorHauke Mehrtens <hauke@hauke-m.de>
Sun, 1 Apr 2018 13:48:47 +0000 (15:48 +0200)
committerHauke Mehrtens <hauke@hauke-m.de>
Tue, 3 Apr 2018 21:26:45 +0000 (23:26 +0200)
commit9aaa23ec8baa50b63d33466f3f353e43c473952a
tree4c25fb285469828b15d8f07a117ee5578da9a7e4tree | snapshot
parentd6d3db05436952f68f47d35df58ad5050b1f2d66commit | diff
samba36: fix some security problems

This Adds fixes for the following security problems based on debians patches:
CVE-2016-2125: Unconditional privilege delegation to Kerberos servers in trusted realms
CVE-2017-12163: Server memory information leak over SMB1
CVE-2017-12150: SMB1/2/3 connections may not require signing where they should
CVE-2018-1050: Denial of Service Attack on external print server.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
package/network/services/samba36/Makefile diff | blob | history
package/network/services/samba36/patches/028-CVE-2016-2125-v3.6.patch [new file with mode: 0644] blob
package/network/services/samba36/patches/028-CVE-2017-7494-v3-6.patch [deleted file] blob | history
package/network/services/samba36/patches/029-CVE-2017-15275.patch [deleted file] blob | history
package/network/services/samba36/patches/029-CVE-2017-7494-v3-6.patch [new file with mode: 0644] blob
package/network/services/samba36/patches/030-CVE-2017-15275-v3.6.patch [new file with mode: 0644] blob
package/network/services/samba36/patches/031-CVE-2017-12163-v3.6.patch [new file with mode: 0644] blob
package/network/services/samba36/patches/032-CVE-2017-12150-v3.6.patch [new file with mode: 0644] blob
package/network/services/samba36/patches/032-CVE-2018-1050-v3-6.patch [new file with mode: 0644] blob
package/network/services/samba36/patches/200-remove_printer_support.patch diff | blob | history
lynxis staging tree