| commit | 8afa10ad7d7e81bcae27b6a913210ef8a1ee4426 | |
| author | Jeremy Allison <jra@samba.org> | |
| Mon, 28 Sep 2009 11:44:12 +0000 (28 13:44 +0200) | ||
| committer | Karolin Seeger <kseeger@samba.org> | |
| Mon, 28 Sep 2009 11:44:12 +0000 (28 13:44 +0200) | ||
| tree | 40db0d87b911c64bdf93b468fc11af6bc3aec08c | treesnapshot (tar.gz zip) |
| parent | ec0ee6753818d546ad5817bdb09cdd3b7c5673af | commitdiff |
Fix for CVE-2009-2813.
===========================================================
== Subject: Misconfigured /etc/passwd file may share folders unexpectedly
==
== CVE ID#: CVE-2009-2813
==
== Versions: All versions of Samba later than 3.0.11
==
== Summary: If a user in /etc/passwd is misconfigured to have
== an empty home directory then connecting to the home
== share of this user will use the root of the filesystem
== as the home directory.
===========================================================
===========================================================
== Subject: Misconfigured /etc/passwd file may share folders unexpectedly
==
== CVE ID#: CVE-2009-2813
==
== Versions: All versions of Samba later than 3.0.11
==
== Summary: If a user in /etc/passwd is misconfigured to have
== an empty home directory then connecting to the home
== share of this user will use the root of the filesystem
== as the home directory.
===========================================================
| source/param/loadparm.c | diffblobblamehistory | |
| source/smbd/service.c | diffblobblamehistory |