Show pageOld revisionsBacklinksBack to top This page is read only. You can view the source, but not change it. Ask your administrator if you think this is wrong. ====== Slackware64-14.1 ChangeLog (2016-07-07) ====== ====== Thu Jul 7 19:52:36 UTC 2016 ====== ===== Packages ===== ==== Upgraded ==== * [[slackware64.14.1>patches/packages/samba-4.2.14-x86_64-1_slack14.1.txz]] \\ This release fixes a security issue: \\ Client side SMB2/3 required signing can be downgraded. \\ It's possible for an attacker to downgrade the required signing for an \\ SMB2/3 client connection, by injecting the SMB2_SESSION_FLAG_IS_GUEST or \\ SMB2_SESSION_FLAG_IS_NULL flags. This means that the attacker can \\ impersonate a server being connected to by Samba, and return malicious \\ results. \\ For more information, see: \\ http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2119 \\ (* Security fix *) {{tag>slackware changelog slackware64-14.1 2016-07}} news/2016/07/07/slackware64-14.1-changelog.txt Last modified: 5 months agoby Giuseppe Di Terlizzi Log In