Git-Url: http://git.frugalware.org/gitweb/gitweb.cgi?p=homepage-ng.git;a=commitdiff;h=bd4e6c7fefdc6fa13b8ed9704b9ba3e1e90c579e
commit bd4e6c7fefdc6fa13b8ed9704b9ba3e1e90c579e Author: kikadf <[email protected]> Date: Thu Apr 17 08:48:36 2014 +0200 Add FSA for samba diff --git a/frugalware/xml/security.xml b/frugalware/xml/security.xml index b3187ab..ac1c0b3 100644 --- a/frugalware/xml/security.xml +++ b/frugalware/xml/security.xml @@ -39,6 +39,20 @@ <fsas> <fsa> + <id>807</id> + <date>2014-04-17</date> + <author>kikadf</author> + <package>samba</package> + <vulnerable>3.6.9-4arcturus1</vulnerable> + <unaffected>3.6.23-1arcturus1</unaffected> + <bts></bts> + <cve>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4496 + http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6442</cve> + <desc>Andrew Bartlett discovered that Samba did not properly enforce the password guessing protection mechanism for all interfaces. + Samba have a flaw in the smbcacls command. If smbcacls is used with the "-C|--chown name" or "-G|--chgrp name" + command options it will remove the existing ACL on the object being modified, leaving the file or directory unprotected.</desc> + </fsa> + <fsa> <id>806</id> <date>2014-04-17</date> <author>kikadf</author> _______________________________________________ Frugalware-git mailing list [email protected] http://frugalware.org/mailman/listinfo/frugalware-git
