diff options
| author |   Archana Polampalli <archana.polampalli@windriver.com> | 2024-01-25 10:04:43 +0000 |
|---|---|---|
| committer |   Armin Kuster <akuster808@gmail.com> | 2024-02-07 07:58:05 -0500 |
| commit | d70ea7848d06637628c38e6dfaa0cb82d05e927d (patch) | |
| tree | 57c09e1eef86a5c9993a6fc8fad8620927acfa96 /meta-networking/recipes-connectivity/samba/samba_4.14.14.bb | |
| parent | b58ec60eb08c53595664dc831ae1f51cc4430615 (diff) | |
| download | meta-openembedded-contrib-d70ea7848d06637628c38e6dfaa0cb82d05e927d.tar.gz | |
samba: fix CVE-2023-0922
The Samba AD DC administration tool, when operating against a remote LDAP server,
will by default send new or reset passwords over a signed-only connection.
References:
https://nvd.nist.gov/vuln/detail/CVE-2023-0922
Upstream patches:
https://github.com/samba-team/samba/commit/04e5a7eb03a
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Diffstat (limited to 'meta-networking/recipes-connectivity/samba/samba_4.14.14.bb')
| -rw-r--r-- | meta-networking/recipes-connectivity/samba/samba_4.14.14.bb | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/meta-networking/recipes-connectivity/samba/samba_4.14.14.bb b/meta-networking/recipes-connectivity/samba/samba_4.14.14.bb index 6838ac12f2..2fb93be0a9 100644 --- a/meta-networking/recipes-connectivity/samba/samba_4.14.14.bb +++ b/meta-networking/recipes-connectivity/samba/samba_4.14.14.bb @@ -58,6 +58,7 @@ SRC_URI = "${SAMBA_MIRROR}/stable/samba-${PV}.tar.gz \ file://CVE-2018-14628-0004.patch \ file://CVE-2018-14628-0005.patch \ file://CVE-2018-14628-0006.patch \ + file://CVE-2023-0922.patch \ " SRC_URI:append:libc-musl = " \ |