package/samba4: security bump to version 4.9.8 (7037a761) · Commits · Arm Reference Solutions / buildroot

Commit 7037a761 authored May 14, 2019 by Peter Korsgaard Committed by Thomas Petazzoni May 14, 2019

package/samba4: security bump to version 4.9.8

Fixes the following security issues:

CVE-2018-16860: The checksum validation in the S4U2Self handler in the
embedded Heimdal KDC did not first confirm that the checksum was keyed,
allowing replacement of the requested target (client) principal.

For more details, see the advisory:
https://www.samba.org/samba/security/CVE-2018-16860.html



Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>

parent 1cbc8172

Hide whitespace changes

Inline Side-by-side

Please register or to comment