CVSROOT: /cvs Module name: ports Changes by: j...@cvs.openbsd.org 2020/01/24 06:30:25
Modified files: net/samba : Tag: OPENBSD_6_6 Makefile distinfo Log message: SECURITY update to samba-4.9.18 Fixes for: o CVE-2019-14902: The implementation of ACL inheritance in the Samba AD DC was not complete, and so absent a 'full-sync' replication, ACLs could get out of sync between domain controllers. o CVE-2019-14907: When processing untrusted string input Samba can read past the end of the allocated buffer when printing a "Conversion error" message to the logs. o CVE-2019-19344: During DNS zone scavenging (of expired dynamic entries) there is a read of memory after it has been freed.