samba (2:4.2.14+dfsg-0+deb8u9) jessie-security; urgency=high * This is a security release in order to address the following defects: - CVE-2017-15275: s3: smbd: Chain code can return uninitialized memory when talloc buffer is grown. - CVE-2017-14746: s3: smbd: Fix SMB1 use-after-free crash bug. -- Mathieu Parent <email address hidden> Sun, 12 Nov 2017 11:10:53 +0100