CVE-2017-7494?

BloodyIron · May 26, 2017

Hi Folks,

I'm asking about this : https://arstechnica.com/security/20...ug-has-lurked-in-samba-for-7-years-patch-now/

I just saw that an update is available as of this writing, for samba stuff, are these updates to address this CVE? Or is that a WIP?

Thanks,

fabian · May 26, 2017

samba packages are not provided by PVE, but come from the stock Debian repositories.

according to https://security-tracker.debian.org/tracker/CVE-2017-7494 and https://www.debian.org/security/2017/dsa-3860 , a fixed package has already been released for Debian Jessie.

BloodyIron · May 26, 2017

Sweet, looks like I picked it up then! Thanks