254111 – net/samba410 - address CVE

Bug 254111 - net/samba410 - address CVE

Summary: net/samba410 - address CVE

Status:	Closed Overcome By Events

Alias:	None

Product:	Ports & Packages
Classification:	Unclassified
Component:	Individual Port(s) (show other bugs)
Version:	Latest
Hardware:	Any Any

Importance:	--- Affects Only Me
Assignee:	Fernando Apesteguía

URL:
Keywords:

Depends on:
Blocks:

Reported:	2021-03-07 19:37 UTC by Mikhail Teterin
Modified:	2021-03-10 11:56 UTC (History)
CC List:	1 user (show)

See Also:

Attachments
Backport 4.11 CVE-fixes to 4.10 (13.71 KB, text/plain) 2021-03-07 19:37 UTC, Mikhail Teterin	no flags	Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Mikhail Teterin freebsd_committer

2021-03-07 19:37:14 UTC

Created attachment 223071 [details]
Backport 4.11 CVE-fixes to 4.10

The port is currently marked vulnerable, because Samba-project didn't include the 4.10.x release, when patch the three vulnerabilities discovered last October.

Fortunately, the patch they did issue for 4.11.x applies /almost/ perfectly to 4.10.18-- with only a single hunk needing adjusting.

Please, consider dropping the attached file into the port's files/ and, perhaps, undeprecate the port for a little while longer...

Comment 1 Fernando Apesteguía freebsd_committer

2021-03-08 11:28:36 UTC

(In reply to Mikhail Teterin from comment #0)
Hi Mikhail,

net/samba410 is in the ports collection no more. We have net/samba{411,412,413}