The content of this topic has been archived on 30 Apr 2018. There are no obvious gaps in this topic, but there may still be some posts missing at the end.
Hey everyone,
I'm not exactly a member of the WRT community, I work with a threat intelligence company, and just noted that Samba.org put out a Security Advisory (CVE-2017-7494). I know OpenWRT can use Samba so wanted to help get the word out.
I'd link the advisory, but apparently I'm not allowed.
This got already patched in OpenWrt https://github.com/openwrt/openwrt/comm … ee8f20568d. Well, for you to be exposed to this issue the service needs to be accessible from the internet which I'd avoid anyway. If for some reason that is not possible rebuild your image and update as soon as possible.
And this is why I love Open Source. Thanks Sera!
The discussion might have continued from here.