-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Dario Lesca wrote: > Ok.: >> [lesca@s-vmw tmp]$ rpm -q -p --changelog >> samba-3.0.24-7.fc6.i386.rpm |head -30 * mer giu 06 2007 Simo >> Sorce <ssorce@xxxxxxxxxx> 3.0.24-7.fc5 - CVE-2007-2447 patch v2 - >> CVE-2007-2444 patch v2 not security problems, just bugs in the >> patches >> >> * mar mag 15 2007 Simo Sorce <ssorce@xxxxxxxxxx> 3.0.24-5.fc6 - >> Security fixes for CVE-2007-2444 CVE-2007-2446 CVE-2007-2447 >> >> * ven apr 06 2007 Simo Sorce <ssorce@xxxxxxxxxx> 3.0.24-4.fc6 - >> sync up patches from the rawhide packages >> >> * gio mar 29 2007 Simo Sorce <ssorce@xxxxxxxxxx> 3.0.24-3.fc6 - >> add patch for bug 176649 >> >> * mar mar 27 2007 Simo Sorce <ssorce@xxxxxxxxxx> - remove patch >> for bug 106483 as it introduces a new bug that prevents the use >> of a credentials file with the smbclient tar command >> >> * ven mar 23 2007 Simo Sorce <ssorce@xxxxxxxxxx> 3.0.24-2.fc5 - >> fix log rotate script to no kill -HUP samba daemons >> >> * gio nov 16 2006 Jay Fenlason <fenlason@xxxxxxxxxx> 3.0.24-1.fc6 >> - New upstream release ..... > Then is a New release only for fc6? > Hmmm, Check on the web-site for Fedora and find out if FC6 is still getting updates. If so, then I'd file a BUG report for SAMBA and FC6. There are two security issues that apply to that version of samba that need to be addressed. CVE-2007-4572 and CVE-2007-5398. - -James -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFHTZDzkNLDmnu1kSkRAuXUAJ0fEvS4BKuwG1525TqXNjDoOpL9AQCfWWVz UUuPubMkQpFmvO0BOfhm+Bk= =hPlp -----END PGP SIGNATURE----- -- Scanned by ClamAV - http://www.clamav.net
