WHATSNEW: Prepare release notes for 3.6.4.

author Karolin Seeger <kseeger@samba.org>

Sat, 7 Apr 2012 13:20:25 +0000 (15:20 +0200)

committer Karolin Seeger <kseeger@samba.org>

Sat, 7 Apr 2012 13:20:25 +0000 (15:20 +0200)
author Karolin Seeger <kseeger@samba.org>
Sat, 7 Apr 2012 13:20:25 +0000 (15:20 +0200)
committer Karolin Seeger <kseeger@samba.org>
Sat, 7 Apr 2012 13:20:25 +0000 (15:20 +0200)
diff --git a/WHATSNEW.txt b/WHATSNEW.txt

index 92754cf2bc5053ec722f5944ca0be90a5a56a225..2f131e84d46905e2e528068a49a46faa905ac4d5 100644 (file)
--- a/WHATSNEW.txt
+++ b/WHATSNEW.txt
@@ -1,20 +1,25 @@
                     =============================
                     Release Notes for Samba 3.6.4
-                         , 2012
+                          April 10, 2012
                     =============================
  
  
-This is the latest stable release of Samba 3.6.
+This is a security release in order to address
+CVE-2012-1182 ("root" credential remote code execution).
  
-Major enhancements in Samba 3.6.4 include:
+o  CVE-2012-1182:
+   Samba 3.0.x to 3.6.3 are affected by a
+   vulnerability that allows remote code
+   execution as the "root" user.
  
-o  
  
  Changes since 3.6.3:
  --------------------
  
  
-o   Jeremy Allison <jra@samba.org>
+o   Stefan Metzmacher <metze@samba.org>
+    *BUG 8815: PIDL based autogenerated code allows overwriting beyond of
+     allocated array (CVE-2012-1182).
  
  
  ######################################################################
author	Karolin Seeger <kseeger@samba.org>
	Sat, 7 Apr 2012 13:20:25 +0000 (15:20 +0200)
committer	Karolin Seeger <kseeger@samba.org>
	Sat, 7 Apr 2012 13:20:25 +0000 (15:20 +0200)