[Pkg-samba-maint] DO NOT REPLY [Bug 6853] mount.cifs race that allows user to replace mountpoint with a symlink

samba-bugs at samba.org samba-bugs at samba.org
Mon Mar 8 11:58:01 UTC 2010


------- Comment #32 from ks at sernet.de  2010-03-08 05:58 CST -------
(In reply to comment #31)
> Karolin, I believe what we decided was to go ahead and push these patches to
> v3.0-test, v3.2-test, and v3.3-test branches too, but not to do a special
> release for them. When/if we get security fixes that need to go to those
> branches, then they'll automatically get those patches too.
> I know it's a bit strange, but so are the circumstances surrounding this
> problem...

I am sorry, but a security release does only contain the patches that address
this particular security issue (with CVE number) and nothing else. That's an
instruction I explicitly got for security releases. Additionally, there will be
only 3.3 security releases. I do understand that things are a bit different for
this bug, but I would argue against pushing the patches to v3-0-test (closed),
v3-2-test (closed) and even v3-3-test (sec rels only). Opinions? 

Configure bugmail: https://bugzilla.samba.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.

More information about the Pkg-samba-maint mailing list