samba: Security Advisory - CVE-2013-4475 (18e196f1) · Commits · poplar / meta-openembedded

Commit 18e196f1 authored Jun 13, 2014 by

Chong.Lu@windriver.com Committed by Martin Jansa Jun 21, 2014

samba: Security Advisory - CVE-2013-4475

Samba 3.x before 3.6.20, 4.0.x before 4.0.11, and 4.1.x before 4.1.1,
when vfs_streams_depot or vfs_streams_xattr is enabled, allows remote
attackers to bypass intended file restrictions by leveraging ACL
differences between a file and an associated alternate data stream
(ADS).

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-4475



Signed-off-by: Yue Tao <Yue.Tao@windriver.com>
Signed-off-by: Chong Lu <Chong.Lu@windriver.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>

parent 69e765c4

Hide whitespace changes

Inline Side-by-side

Please register or to comment

Admin message

samba: Security Advisory - CVE-2013-4475