WHATSNEW: Prepare release notes for 3.6.4.

Karolin
author: Karolin Seeger <kseeger@samba.org> 2012-04-07 15:20:25 +0200
committer: Karolin Seeger <kseeger@samba.org> 2012-04-07 15:20:25 +0200
commit: 0d45a24cffef841de5db2344910224e4df9bce3a (patch)
tree: f3ba75819de978f0c756226e3a8ddc6fa41e44ef
parent: 4b7fad38ea31534990b9960ae6fff9fc344020e6 (diff)
download: samba-0d45a24cffef841de5db2344910224e4df9bce3a.tar.gz
1 files changed, 10 insertions, 5 deletions
diff --git a/WHATSNEW.txt b/WHATSNEW.txt
index 92754cf2bc5..2f131e84d46 100644
--- a/WHATSNEW.txt
+++ b/WHATSNEW.txt
@@ -1,20 +1,25 @@
                    =============================
                    Release Notes for Samba 3.6.4
-                         , 2012
+                          April 10, 2012
                    =============================
 
 
-This is the latest stable release of Samba 3.6.
+This is a security release in order to address
+CVE-2012-1182 ("root" credential remote code execution).
 
-Major enhancements in Samba 3.6.4 include:
+o  CVE-2012-1182:
+   Samba 3.0.x to 3.6.3 are affected by a
+   vulnerability that allows remote code
+   execution as the "root" user.
 
-o  
 
 Changes since 3.6.3:
 --------------------
 
 
-o   Jeremy Allison <jra@samba.org>
+o   Stefan Metzmacher <metze@samba.org>
+    *BUG 8815: PIDL based autogenerated code allows overwriting beyond of
+     allocated array (CVE-2012-1182).
 
 
 ######################################################################
author	Karolin Seeger <kseeger@samba.org>	2012-04-07 15:20:25 +0200
committer	Karolin Seeger <kseeger@samba.org>	2012-04-07 15:20:25 +0200
commit	0d45a24cffef841de5db2344910224e4df9bce3a (patch)
tree	f3ba75819de978f0c756226e3a8ddc6fa41e44ef
parent	4b7fad38ea31534990b9960ae6fff9fc344020e6 (diff)
download	samba-0d45a24cffef841de5db2344910224e4df9bce3a.tar.gz