diff options
| author |   Chong.Lu@windriver.com <Chong.Lu@windriver.com> | 2014-06-13 14:12:54 +0800 |
|---|---|---|
| committer |   Andreas Oberritter <obi@opendreambox.org> | 2015-04-22 10:07:58 +0200 |
| commit | dec356f4151f47c4f31b4d72e0d5d5171c671843 (patch) | |
| tree | 10b57f58a86a587af5b294aa107c091dea9831ad /meta-oe/recipes-connectivity/samba/samba_3.6.8.bb | |
| parent | cc4c86733df40504f93eabc46ec66017fbcee8aa (diff) | |
| download | meta-openembedded-contrib-dec356f4151f47c4f31b4d72e0d5d5171c671843.tar.gz | |
samba: Security Advisory - CVE-2013-4496
Samba 3.x before 3.6.23, 4.0.x before 4.0.16, and 4.1.x before 4.1.6
does not enforce the password-guessing protection mechanism for all
interfaces, which makes it easier for remote attackers to obtain access
via brute-force ChangePasswordUser2 (1) SAMR or (2) RAP attempts.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-4496
Signed-off-by: Yue Tao <Yue.Tao@windriver.com>
Signed-off-by: Chong Lu <Chong.Lu@windriver.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
(cherry picked from commit 3d5d8c6d0f21de60dc84610a4d47da2d8c062901)
Signed-off-by: Andreas Oberritter <obi@opendreambox.org>
Diffstat (limited to 'meta-oe/recipes-connectivity/samba/samba_3.6.8.bb')
| -rw-r--r-- | meta-oe/recipes-connectivity/samba/samba_3.6.8.bb | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/meta-oe/recipes-connectivity/samba/samba_3.6.8.bb b/meta-oe/recipes-connectivity/samba/samba_3.6.8.bb index 20b609de5f..f80e41ed01 100644 --- a/meta-oe/recipes-connectivity/samba/samba_3.6.8.bb +++ b/meta-oe/recipes-connectivity/samba/samba_3.6.8.bb @@ -30,6 +30,7 @@ SRC_URI += "\ file://configure-disable-getaddrinfo-cross.patch;patchdir=.. \ file://configure-disable-core_pattern-cross-check.patch;patchdir=.. \ file://configure-libunwind.patch;patchdir=.. \ + file://samba-3.6.22-CVE-2013-4496.patch;patchdir=.. \ " SRC_URI[md5sum] = "fbb245863eeef2fffe172df779a217be" SRC_URI[sha256sum] = "4f5a171a8d902c6b4f822ed875c51eb8339196d9ccf0ecd7f6521c966b3514de" |