[3.5] samba: Symlink race allows access outside share definition (CVE-2017-2619)
All versions of Samba prior to 4.6.1, 4.5.7, 4.4.12 are vulnerable to
a malicious client using a symlink race to allow access to areas of
the server file system not exported under the share definition.
Samba uses the realpath() system call to ensure when a client requests
access to a pathname that it is under the exported share path on the
server file system.
(from redmine: issue id 7051, created on 2017-03-24, closed on 2017-05-02)
main/samba: security upgrade to 4.5.7 (CVE-2017-2619). Fixes #7051