Samba 4.17.2 (gzipped)
Signature
Patch (gzipped) against Samba 4.17.1
Signature
============================== Release Notes for Samba 4.17.2 October 25, 2022 ============================== This is a security release in order to address the following defects: o CVE-2022-3437: There is a limited write heap buffer overflow in the GSSAPI unwrap_des() and unwrap_des3() routines of Heimdal (included in Samba). https://www.samba.org/samba/security/CVE-2022-3437.html o CVE-2022-3592: A malicious client can use a symlink to escape the exported directory. https://www.samba.org/samba/security/CVE-2022-3592.html Changes since 4.17.1 -------------------- o Volker Lendecke <vl@samba.org> * BUG 15207: CVE-2022-3592. o Joseph Sutton <josephsutton@catalyst.net.nz> * BUG 15134: CVE-2022-3437.