Comment 3 for bug 1964842

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to tools (master)

Reviewed: https://review.opendev.org/c/starlingx/tools/+/834351
Committed: https://opendev.org/starlingx/tools/commit/29254bd6ea1e80ce21ce55417248d7557f528598
Submitter: "Zuul (22348)"
Branch: master

commit 29254bd6ea1e80ce21ce55417248d7557f528598
Author: Joe Slater <email address hidden>
Date: Fri Mar 18 15:17:50 2022 -0400

    samba: fix three CVEs

    CVE-2021-44142: out-of-bounds heap read/write
    CVE-2020-25717: user can become root
    CVE-2020-25719: AD DC does not always rely on the SID and PAC

    === testing

    Boot iso and check rpm versions. Only samba
    libraries are included in the image.

    ===

    Closes-bug: 1964842
    Signed-off-by: Joe Slater <email address hidden>
    Change-Id: I55a97b662ac24c1ba9852a09d8e40b5a40f67945