[Pkg-samba-maint] CVE-2012-6150 and samba4
Andrew Bartlett
abartlet at samba.org
Fri Jan 24 23:04:37 UTC 2014
I've checked, and this issue does not apply to samba4, because the
'samba4' winbind does not implement this feature at all. That is, the
problem directive is ignored in all cases. (This is still fail-open,
but in this case consistently open).
https://security-tracker.debian.org/tracker/CVE-2012-6150
Thanks,
Andrew Bartlett
--
Andrew Bartlett http://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
Samba Developer, Catalyst IT http://catalyst.net.nz/services/samba
More information about the Pkg-samba-maint
mailing list