Slackware-10.2 ChangeLog (2009-10-03)

Sat Oct 3 18:19:00 CDT 2009

patches/packages/samba-3.0.37-i486-1_slack10.2.tgz:
This update fixes the following security issues.
A misconfigured /etc/passwd with no defined home directory could allow
security restrictions to be bypassed.
mount.cifs could allow a local user to read the first line of an arbitrary
file if installed setuid. (On Slackware, it was not installed setuid)
Specially crafted SMB requests could cause a denial of service.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2813
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2948
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2906
(* Security fix *)
  • news/2009/10/03/slackware-10.2-changelog.txt
  • Last modified: 3 years ago
  • by Giuseppe Di Terlizzi