Author: jerry Date: 2007-06-05 13:06:32 +0000 (Tue, 05 Jun 2007) New Revision: 1122
WebSVN: http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=rev&root=samba-web&rev=1122 Log: update May 14 list of patch descriptions Modified: trunk/history/security.html Changeset: Modified: trunk/history/security.html =================================================================== --- trunk/history/security.html 2007-06-05 12:09:52 UTC (rev 1121) +++ trunk/history/security.html 2007-06-05 13:06:32 UTC (rev 1122) @@ -23,8 +23,8 @@ <tr> <td>14 May 2007</td> - <td><a href="/samba/ftp/patches/security/samba-3.0.24-CVE-2007-2447.patch">patch for Samba 3.0.24</a></td> - <td>Remote Command Injection Vulnerability</td> + <td><a href="/samba/ftp/patches/security/samba-3.0.24-CVE-2007-2447_v2.patch">patch for Samba 3.0.24</a></td> + <td>Remote Command Injection Vulnerabilita (Updated June 5 to include missing "c" character from INCLUDE list).y</td> <td>Samba 3.0.0 - 3.0.25rc3</td> <td><a href="http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2447";>CVE-2007-2447</a></td> <td><a href="/samba/security/CVE-2007-2447.html">Announcement</a></td> @@ -32,7 +32,7 @@ <td>14 May 2007</td> <td><a href="/samba/ftp/patches/security/samba-3.0.24-CVE-2007-2446_v2.patch">patch for Samba 3.0.24</a></td> - <td>Multiple Heap Overflows Allow Remote Code Execution</td> + <td>Multiple Heap Overflows Allow Remote Code Execution (Updated May 25 to fix regression in Samba domian controller logon code).</td> <td>Samba 3.0.0 - 3.0.25rc3</td> <td><a href="http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2446";>CVE-2007-2446</a></td> <td><a href="/samba/security/CVE-2007-2446.html">Announcement</a></td> @@ -40,7 +40,7 @@ <td>14 May 2007</td> <td><a href="/samba/ftp/patches/security/samba-3.0.24-CVE-2007-2444_v2.patch">patch for Samba 3.0.24</a></td> - <td>Local SID/Name translation bug can result in user privilege elevation</td> + <td>Local SID/Name translation bug can result in user privilege elevation (Updated May 25 to fix regression in the "force group" parameter).</td> <td>Samba 3.0.23d - 3.0.25pre2</td> <td><a href="http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2444";>CVE-2007-2444</a></td> <td><a href="/samba/security/CVE-2007-2444.html">Announcement</a></td>
