[oe] samba-essential upgrade or remove?
Holger Hans Peter Freyther
holger+oe at freyther.de
Mon Mar 15 03:46:26 UTC 2010
On Monday 08 March 2010 13:51:35 Holger Hans Peter Freyther wrote:
> On Monday 08 March 2010 13:42:07 Dr. Michael Lauer wrote:
> > While I'm not using it atm., I recall that samba-essential was the only
> > recipe that worked relatively painless when Matthias Hentges create it
> > back then.
>
> Then please fix it. You will do a great service to our users. The following
> CVEs are not addressed:
> CVE-2009-2813, CVE-2009-2948, CVE-2009-2906, CVE-2009-1888,
> CVE-2008-4314, CVE-2008-1105, CVE-2007-6015, CVS-2007-4572, CVE-2007-5398,
> CVE-2007-2444, CVE-2007-2446, CVE-2007-2447, CVE-2007-0452, CVE-2007-0453,
> CVE-2007-0454, CAN-2006-1059..
any update? Is anyone volunteering to update samba-essential or shall we
remove it from the tree? I think we have a responsibility to our users that if
we install a network daemon that we at least fix the known security issues with
this one or remove it from our recipe collection... Opinions?
z.
More information about the Openembedded-devel
mailing list