Description
The following issues have been fixed in Samba:
* CVE-2012-1182: PIDL based autogenerated code uses
client supplied size values which allows attackers to write
beyond the allocated array size
* CVE-2012-0870: Ensure AndX offsets are increasing
strictly monotonically in pre-3.4 versions
* CVE-2012-0817: Fix memory leak in parent smbd on
connection
Also the following non-security bugs have been fixed:
* s3-winbindd: Only use SamLogonEx when we can get unencrypted session keys; (bso#8599)