Re: EXTERNAL: Re: samba patch from oracle.
Wickline, Bob (N-STERLING COMPUTERS CORPORATION <bob.wickline <at> lmco.com>
2012-04-20 15:22:56 GMT
The problem with Samba and the Big-O is lawyers pouring through the license agreement and approving its
distribution. They do NOT like GPLv3...
From: pca-bounces <at> lists.univie.ac.at [mailto:pca-bounces <at> lists.univie.ac.at] On Behalf Of
Sent: Friday, April 20, 2012 10:12 AM
To: PCA (Patch Check Advanced) Discussion
Subject: EXTERNAL: Re: [pca] samba patch from oracle.
On Thu, Apr 19, 2012 at 9:16 AM, Laurent Blume <laurent <at> elanor.org> wrote:
> Le 19/04/12 00:42, Francois a écrit :
>> Thanks Dagobert for pointing this out ! seems to be the only way to
>> upgrade the DIY way without waiting for Oracle to react !...
> Or use OpenCSW and prod them a little on #opencsw when needed.
> I just did that for Samba, found a packaging bug for them, but in the end it
> works better than Solaris'
I've put in a SR with Oracle too. They said they are going to release
3.6.4, which is
bullshit because Samba stated they we backporting patches for many versions
due to the serious nature of the exploit and ease of attack.
My Redhat and Debian machines were updated for the samba exploit
about a week ago, but we may have to wait until May to get this fixed.