Date: Mon, 29 May 2017 23:47:46 +0200 From: Dimitry Andric <dim@FreeBSD.org> To: Darko Gavrilovic <d.gavrilovic@gmail.com> Cc: freebsd-security@freebsd.org Subject: Re: Samba CVE-2017-7494 on 3.6.25 Message-ID: <F875D26C-F8DA-438F-AE40-8E7B2F5CDC29@FreeBSD.org> In-Reply-To: <CAGYSLOcqeqyYgw3BFyoRKO5RcJkmiYFMPT7qps1j-%2BobL2x==g@mail.gmail.com> References: <CAGYSLOcqeqyYgw3BFyoRKO5RcJkmiYFMPT7qps1j-%2BobL2x==g@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
[-- Attachment #1 --] On 29 May 2017, at 18:53, Darko Gavrilovic <d.gavrilovic@gmail.com> wrote: > > Hello, does anyone know or able to confirm if Samba CVE-2017-7494 > affects Samba 3.6.25 on Freebsd 9.x? > > https://lists.samba.org/archive/samba-announce/2017/000406.html The advisory very clearly says "all versions of Samba from 3.5.0 onwards", so yes. In addition, the 3.x series is dead, and completely unsupported. It is probably wise to upgrade, for example to 4.6.4. -Dimitry [-- Attachment #2 --] -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.30 iEYEARECAAYFAlkslwIACgkQsF6jCi4glqM1tQCgjDk3Qxx3s0O19fs5ByXSQiz8 gBQAniv1PXymZTR839nEJneTEgPt5SJ6 =dZ6j -----END PGP SIGNATURE-----
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?F875D26C-F8DA-438F-AE40-8E7B2F5CDC29>