Slackware-14.0 ChangeLog (2017-07-14)

Fri Jul 14 22:11:58 UTC 2017

  • patches/packages/samba-4.4.15-i486-1_slack14.0.txz
    This update fixes an authentication validation bypass security issue:
    “Orpheus' Lyre mutual authentication validation bypass”
    All versions of Samba from 4.0.0 onwards using embedded Heimdal
    Kerberos are vulnerable to a man-in-the-middle attack impersonating
    a trusted server, who may gain elevated access to the domain by
    returning malicious replication or authorization data.
    Samba binaries built against MIT Kerberos are not vulnerable.
    For more information, see:
    (* Security fix *)
  • news/2017/07/14/slackware-14.0-changelog.txt
  • Last modified: 5 years ago
  • by Giuseppe Di Terlizzi