FD_SET overflows, how last decade! I have been running with the same diff here since 3.5.7 came out and intend to commit it when the ports tree re-opens.
On 2011/03/02 00:36, Ian McWilliam wrote: > http://www.samba.org/samba/security/CVE-2011-0719 > > "All current released versions of Samba are vulnerable to > a denial of service caused by memory corruption. Range > checks on file descriptors being used in the FD_SET macro > were not present allowing stack corruption. This can cause > the Samba code to crash or to loop attempting to select > on a bad file descriptor set." > > > Attached is an update to Samba 3.5.7. > > Ian McWilliam > > >
