Quoting Jamie Strandboge ([EMAIL PROTECTED]): > Package: samba > Version: 2:3.0.30-2 > Severity: normal > Tags: patch > User: [EMAIL PROTECTED] > Usertags: origin-ubuntu intrepid ubuntu-patch > > > In Ubuntu, we've applied the attached patch to our development and stable > releases to achieve the following: > > * debian/patches/upstream_bug5517.patch: adjust cli_negprot() to properly > calculate buffer sizes. This bug was introduced in the fix for > CVE-2008-1105 > * References > https://bugs.launchpad.net/ubuntu/+source/samba/+bug/241448 > https://bugzilla.samba.org/show_bug.cgi?id=5517
Other maintainers (particularly Steve): do you really think we need to apply a patch that was obviously added upstream and will be in 3.0.31 (due out "soon"?) I'm not entirely convinced as it would mean we should adopt all patches used upstream which basically means realeasing versions before them (extra work, etc.).
signature.asc
Description: Digital signature
