WHATSNEW: Prepare release notes for 3.5.14.

author Karolin Seeger <kseeger@samba.org>

Sat, 7 Apr 2012 13:57:14 +0000 (15:57 +0200)

committer Karolin Seeger <kseeger@samba.org>

Sat, 7 Apr 2012 13:57:14 +0000 (15:57 +0200)
author Karolin Seeger <kseeger@samba.org>
Sat, 7 Apr 2012 13:57:14 +0000 (15:57 +0200)
committer Karolin Seeger <kseeger@samba.org>
Sat, 7 Apr 2012 13:57:14 +0000 (15:57 +0200)
diff --git a/WHATSNEW.txt b/WHATSNEW.txt

index 391af0b8f6ef6d93d6db62be2ec825e08863f0b6..6d5326dab28957d8cb5c61bfd9477c307679d13d 100644 (file)
--- a/WHATSNEW.txt
+++ b/WHATSNEW.txt
@@ -1,20 +1,25 @@
                     ==============================
                     Release Notes for Samba 3.5.14
-                         , 2012
+                          April 10, 2012
                     ==============================
  
  
-This is the latest stable release of Samba 3.5.
+This is a security release in order to address
+CVE-2012-1182 ("root" credential remote code execution).
  
-Major enhancements in Samba 3.5.14 include:
+o  CVE-2012-1182:
+   Samba 3.0.x to 3.6.3 are affected by a
+   vulnerability that allows remote code
+   execution as the "root" user.
  
-o  
  
  Changes since 3.5.13:
  ---------------------
  
  
-o   Jeremy Allison <jra@samba.org>
+o   Stefan Metzmacher <metze@samba.org>
+    *BUG 8815: PIDL based autogenerated code allows overwriting beyond of
+     allocated array (CVE-2012-1182).
  
  
  ######################################################################
author	Karolin Seeger <kseeger@samba.org>
	Sat, 7 Apr 2012 13:57:14 +0000 (15:57 +0200)
committer	Karolin Seeger <kseeger@samba.org>
	Sat, 7 Apr 2012 13:57:14 +0000 (15:57 +0200)