pidl/NDR/Parser: simplify logic in DeclareArrayVariables*()

[samba.git] / WHATSNEW.txt

diff --git a/WHATSNEW.txt b/WHATSNEW.txt
index 890d0029571ec1f6033d03a3b246e85ed238c485..dd400e02fa567b33c4bc1aedd8204b2b1d114d8a 100644 (file)
--- a/WHATSNEW.txt
+++ b/WHATSNEW.txt
@@ -1,19 +1,25 @@
                    ==============================
-                   Release Notes for Samba 3.4.15
-                          , 2011
+                   Release Notes for Samba 3.4.16
+                          April 10, 2011
                    ==============================
 
 
-This is the latest stable release of Samba 3.4.
+This is a security release in order to address
+CVE-2012-1182 ("root" credential remote code execution).
 
-Major enhancements in Samba 3.4.15 include:
+o  CVE-2012-1182:
+   Samba 3.0.x to 3.6.3 are affected by a
+   vulnerability that allows remote code
+   execution as the "root" user.
 
 
-Changes since 3.4.14
+Changes since 3.4.15
 --------------------
 
 
-o   
+o   Stefan Metzmacher <metze@samba.org>
+    *BUG 8815: PIDL based autogenerated code allows overwriting beyond of
+     allocated array (CVE-2012-1182).
 
 
 ######################################################################
@@ -39,6 +45,62 @@ database (https://bugzilla.samba.org/).
 Release notes for older versions follow:
 ----------------------------------------
 
+                   ==============================
+                   Release Notes for Samba 3.4.15
+                          August 23, 2011
+                   ==============================
+
+
+This is the latest stable release of Samba 3.4.
+
+
+Changes since 3.4.14
+--------------------
+
+
+o   David Disseldorp <ddiss@suse.de>
+    * BUG 7836: Make newly added printers visible to clients,
+    * BUG 7994: Make cups async printcap retrieval notify parent smbd of error       status.
+    * BUG 8269: Stop spamming log with "Could not find child X -- ignoring"
+      messages.
+
+
+o   Björn Jacke <bj@sernet.de>
+    * BUG 8362: Fix build issue on old glibc systems.
+
+
+o   Jim McDonough <jmcd@samba.org>
+    * BUG 6364: Pull realm from supplied username on libnet join.
+
+
+o   Stefan Metzmacher <metze@samba.org>
+    * BUG 8276: Return the used number of sockets in create_listen_fdset().
+    * BUG 8347: Fix CVE-2011-2522 regression for HP-UX, AIX and OSF.
+
+
+######################################################################
+Reporting bugs & Development Discussion
+#######################################
+
+Please discuss this release on the samba-technical mailing list or by
+joining the #samba-technical IRC channel on irc.freenode.net.
+
+If you do report problems then please try to send high quality
+feedback. If you don't provide vital information to help us track down
+the problem then you will probably be ignored.  All bug reports should
+be filed under the Samba 3.4 product in the project's Bugzilla
+database (https://bugzilla.samba.org/).
+
+
+======================================================================
+== Our Code, Our Bugs, Our Responsibility.
+== The Samba Team
+======================================================================
+
+
+----------------------------------------------------------------------
+
+
                    ==============================
                    Release Notes for Samba 3.4.14
                           July 26, 2011