Show pageOld revisionsBacklinksBack to top This page is read only. You can view the source, but not change it. Ask your administrator if you think this is wrong. ====== Slackware64-current ChangeLog (2015-01-21) ====== ====== Wed Jan 21 03:10:01 UTC 2015 ====== ===== Packages ===== ==== Upgraded ==== * [[slackware64.current>d/gdb-7.8.2-x86_64-1.txz]] * [[slackware64.current>n/alpine-2.20-x86_64-1.txz]] * [[slackware64.current>n/imapd-2.20-x86_64-1.txz]] * [[slackware64.current>n/samba-4.1.16-x86_64-1.txz]] \\ This update is a security release in order to address CVE-2014-8143 \\ (Elevation of privilege to Active Directory Domain Controller). \\ Samba's AD DC allows the administrator to delegate creation of user or \\ computer accounts to specific users or groups. However, all released \\ versions of Samba's AD DC did not implement the additional required \\ check on the UF_SERVER_TRUST_ACCOUNT bit in the userAccountControl \\ attributes. Most Samba deployments are not of the AD Domain Controller, \\ but are of the classic domain controller, the file server or print server. \\ Only the Active Directory Domain Controller is affected by this issue. \\ Additionally, most sites running the AD Domain Controller do not configure \\ delegation for the creation of user or computer accounts, and so are not \\ vulnerable to this issue, as no writes are permitted to the \\ userAccountControl attribute, no matter what the value. \\ For more information, see: \\ http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8143 \\ (* Security fix *) {{tag>slackware changelog slackware64-current 2015/01}} news/2015/01/21/slackware64-current-changelog.txt Last modified: 9 years agoby Giuseppe Di Terlizzi Log In