Samba 3.2.6 patch for security issue

I know the security issue is hard to trigger, but I created a new PKGBUILD for samba 3.2.6 containing the patch.
Excerpt from the patch commentary:
commit 288fa94ac7cfdf7457b5098c33fc840bed3d5410
Author: Michael Adam <[email protected]>
AuthorDate: Thu Dec 18 18:01:55 2008 +0100
Commit: Karolin Seeger <[email protected]>
CommitDate: Fri Dec 19 08:30:23 2008 +0100
smbd: prevent access to root filesystem when connecting with empty service name
This only applies to a setup with "registry shares = yes"
Michael
And here's the PKGBUILD:
# $Id: PKGBUILD 22200 2008-12-22 22:24:26Z tpowa $
# Maintainer: judd <[email protected]>
pkgname=samba
pkgver=3.2.6
# We use the 'A' to fake out pacman's version comparators. Samba chooses
# to append 'a','b',etc to their subsequent releases, which pamcan
# misconstrues as alpha, beta, etc. Bad samba!
_realver=3.2.6
pkgrel=2.1
pkgdesc="Tools to access a server's filespace and printers via SMB"
arch=(i686 x86_64)
url="http://www.samba.org"
license=('GPL3')
backup=(etc/logrotate.d/samba etc/pam.d/samba etc/samba/smb.conf etc/xinetd.d/swat etc/conf.d/samba)
depends=('db>=4.7' 'popt' 'libcups' 'acl' 'libldap' 'smbclient=3.2.6' 'libcap' 'heimdal>=1.2-1' 'pam' 'fam' 'gnutls>=2.4.1' 'tdb=3.2.6')
options=(!makeflags)
source=(http://us1.samba.org/samba/ftp/stable/${pkgname}-${_realver}.tar.gz \
no-clients.patch samba samba.logrotate swat.xinetd samba.pam samba.conf.d \
ftp://us1.samba.org/pub/samba/patches/security/samba-3.2.6-CVE-2009-0022.patch)
build() {
cd ${srcdir}/${pkgname}-${_realver}/source
patch -Np2 -i ${srcdir}/no-clients.patch || return 1
patch -Np2 -i ${srcdir}/samba-3.2.6-CVE-2009-0022.patch || return 1
./configure --prefix=/usr --with-configdir=/etc/samba \
--with-lockdir=/var/cache/samba \
--with-piddir=/var/run/samba \
--with-fhs --with-pam --with-ads --with-acl-support \
--without-cifsmount --without-libsmbclient \
--with-syslog --with-pam_smbpass \
--localstatedir=/var --disable-dnssd --libdir=/usr/lib/samba
make || return 1
mkdir -p ${pkgdir}/var/log/samba
mkdir -p ${pkgdir}/etc/samba/private
chmod 700 ${pkgdir}/etc/samba/private
make DESTDIR=$startdir/pkg install
chmod 644 ${pkgdir}/usr/include/*.h
rm -rf ${pkgdir}/usr/var
(cd script; cp installbin.sh i; cat i | sed 's/\/sbin\///' > installbin.sh)
install -D -m755 ../../samba ${pkgdir}/etc/rc.d/samba
install -D -m644 ../../samba.conf.d ${pkgdir}/etc/conf.d/samba
mkdir -p ${pkgdir}/etc/samba
cat ../examples/smb.conf.default | \
sed 's|log file = .*$|log file = /var/log/samba/log.%m|g' >${pkgdir}/etc/samba/smb.conf.default
install -D -m644 ../../samba.logrotate ${pkgdir}/etc/logrotate.d/samba
install -D -m644 ../../swat.xinetd ${pkgdir}/etc/xinetd.d/swat
install -D -m644 ../../samba.pam ${pkgdir}/etc/pam.d/samba
# symlink libs
for i in ${pkgdir}/usr/lib/samba/libsmbshare*; do
ln -sf samba/$(basename $i) ${pkgdir}/usr/lib/$(basename $i)
done
# spool directory
install -d -m1777 ${pkgdir}/var/spool/samba
sed -i 's|/usr/spool/samba|/var/spool/samba|g' ${pkgdir}/etc/samba/smb.conf.default
# fix logrotate
sed -i -e 's|log.%m|%m.log|g' ${pkgdir}/etc/samba/smb.conf.default
# nsswitch libraries
install -D -m755 nsswitch/libnss_wins.so ${pkgdir}/lib/libnss_wins.so
ln -s libnss_wins.so ${pkgdir}/lib/libnss_wins.so.2
install -D -m755 nsswitch/libnss_winbind.so ${pkgdir}/lib/libnss_winbind.so
install -D -m755 bin/pam_winbind.so ${pkgdir}/lib/security/pam_winbind.so
# remove conflict files of smbclient and tdb
for man in libsmbclient smbspool \
umount.cifs mount.cifs net; do
rm -f ${pkgdir}/usr/share/man/man8/${man}.8
done
for i in libnetapi* libtdb* libtalloc* libwbclient*; do
rm -f ${pkgdir}/usr/lib/samba/$i
done
rm -f ${pkgdir}/usr/bin/tdbbackup
rm -f ${pkgdir}/usr/include/{tdb.h,talloc.h,netapi.h}
for man in rpcclient smbcacls smbclient smbcquotas \
smbtree smbtar nmblookup smbget; do
rm -f ${pkgdir}/usr/share/man/man1/${man}.1
done
rm -f ${pkgdir}/usr/share/man/man7/libsmbclient.7
rm -f ${pkgdir}/usr/include/libsmbclient.h
md5sums=('0cd27c7afbb8211616eea4010f32271c'
'a676f0dde2c434aeb5125376b8797a64'
'e93533fa2296c07c1f645dfdd373657f'
'5697da77590ec092cc8a883bae06093c'
'a4bbfa39fee95bba2e7ad6b535fae7e6'
'96f82c38f3f540b53f3e5144900acf17'
'f2f2e348acd1ccb566e95fa8a561b828'
'e15ab37115101cf3a8d110f0c1f8e29e')
I think a security task force should be initiated (I know discussions existed, but I don't know what were the consequences), so that important packages (like those providing services) could be updated in a timely manner. This is a minor issue as I stated earlier, but it could be worse. Those interested, let's initiate a discussion with the developers of important packages and try to get some things working. People (mostly trusted users) who can generate early packages are welcome, so that they can provide early versions of unvulnerable packages.

ckristi wrote:I don't know about other packages, but I believe when I checked the PKGBUILD for PHP, that the security fix was included in 5.2.7.
Check http://repos.archlinux.org/viewvc.cgi/p … iew=markup for more info.
And don't get me wrong, I am a little bit concerned about the way vulnerabilities are treated in Arch, 'cause my home server is running this distro.
And I really would think we should start some serious discussions about this security issues and the way they should be treated. I know the developers are doing their best and I'm not going to put fingers at all. They should be helped in maintaining packages for important services. We'll benefit from it and their tasks would be easier.
Why don't you start a wiki page tracking the latest vulnerabilities disclosed on various security mailing lists which are not fixed in arch. This will make it much easier for the devs.
This thing has been already discussed multiple times and already a wiki page exists for Arch Security Team but it seems nobody followed up with that.
http://wiki.archlinux.org/index.php/Security_Task_Force

Similar Messages

  • Mozilla releases Firefox 39, patches 22 security issues

    Mozilla released Firefox 39, a new version that, in addition to patching 22 security issues, now checks downloads for malware on OSX and Linux.According to Myce, Mozilla marked 13 of the 22 security patches as critical, which means "an attacker can fully take over the computer of a user with a vulnerable Firefox version." Mozilla also patched the security vulnerabilityLogjam, which lets an attacker see ormodify a user's data by weakening the TLS encryption.Other patches and new features in Firefox 39 include:A patch for Mac users solved the problem where crash reports would sometimes contain personal information, such as a user's keystrokes. Problems with "the built-in PDF reader of Firefox has also been resolved," according to Myce. In a bid to offer better security protection against malware and adware, Mozilla addedGoogle's Safe...
    This topic first appeared in the Spiceworks Community

    If you can't switch to a proper security suite and you absolutely need all the browser integration bells and whistles, then you can downgrade to the ESR version of Firefox. It's a special version intented for organizations. It gets security patches regularly, but it only changes major versions once per year.
    * http://www.mozilla.org/firefox/organizations/all.html
    New major versions of Firefox have been released every 6 weeks since [http://www.mozilla.org/firefox/4.0/releasenotes/ March 22nd, 2011].
    * https://blog.mozilla.org/futurereleases/2011/07/19/every-six-weeks/
    Every new major version contains security fixes. By sticking with an old version like 20.0.1, you're putting your system at risk.
    * https://www.mozilla.org/security/known-vulnerabilities/firefox.html
    Chrome's release model is similar.
    * http://www.chromium.org/developers/calendar
    * https://en.wikipedia.org/wiki/Google_Chrome#Release_history
    Opera will be updated every 2 weeks.
    * http://my.opera.com/desktopteam/blog/2013/07/02/opera-15
    Internet Explorer for Windows XP is 2 major versions behind and will never be updated. In theory, it's supported with security patches for as long as Windows XP is supported, but not so much in practice.
    * http://www.pcmag.com/article2/0,2817,2361485,00.asp
    Safari for Windows has been abandoned.
    * [http://www.maximumpc.com/article/news/safari_windows_abandoned_apple_leaving_users_vulnerable_no_warning http://www.maximumpc.com/article/news/safari_windows_abandoned_…]

  • My account was deleted for security issues. I made a new account, but I can't syncronise my apps with this new account. I bought a new Iphone and would like to transfer the apps ans music on this new one. Can somebody help me?

    My account was deleted for security issues. I made a new account, but I can't syncronise my apps with this new account. I bought a new Iphone and would like to transfer the apps ans music on this new one. Can somebody help me?

    Why would you make a new account?  This will likely cause many problems.  Just get you old account enabled.
    Apple ID: "This Apple ID has been disabled for security reasons" alert appears
    Frequently Asked Questions About Apple ID
    Everything you purchased with the old account will always be tied to that account.  You will have to authorize the computer for that account and you will have to update the apps from that account.

  • [Solved] Applying synaptic patch for eviocgbit issue

    My computer has been freezing randomly and looking through the logs I've been getting the following error:
    Nov 21 12:28:20 archlinux evdev.c(EVIOCGBIT): Suspicious buffer size 511, limiting output to 64 bytes. See http://userweb.kernel.org/~dtor/eviocgbit-bug.html
    So there is a patch available at the link: http://userweb.kernel.org/~dtor/synapti … gbit.patch, but I have no idea how to apply it.
    Any help would be appriciated
    I think I found the solution in post 546, in this thread: http://bbs.archlinux.org/viewtopic.php?pid=439406
    I'll post again if it doesn't work
    Thanks
    Jeff
    Last edited by klazsick (2008-11-22 19:19:54)

    oh well, no takers
    solved it meself by grabbing the latest abook dev source and modifying my abs PKGBUILD to use that instead
    haven't tried vcard importing yet but this much is [SOLVED]

  • TS2446 My apple ID has been disabled but not for security issues.

    I can log into my account on line but cannot download apps or anything from Itunes.  Have been to the support page and that has been useless!  What is the problem does anyone know how to fix this.
    I can't even update my current apps or phone for that matter.  Is anyone at Apple looking into this?  It was working a little over a week ago and now it is not.
    thanks

    Thanks,  I have tried changing the password 3 times to no avail.  I will contact itunes support
    thanks again

  • Weblogic patch for the "Authentication for user wlsadmin denied" issue

    Hi Everyone,
    When I try to login to the weblogic console using the weblogic user id and password, I got below issue in the production server..Sometime back I saw a thread that Oracle has provided a patch for this issue. If any of you is aware of it then could you please provide us the patch file and its location please. This is quite a bit urgent. Awaiting for your response. Thanks in advance.
    <Apr 3, 2011 10:41:02 PM ICT> <Critical> <Security> <BEA-090403> <Authentication for user wlsadmin denied>
    <Apr 3, 2011 10:41:02 PM ICT> <Critical> <WebLogicServer> <BEA-000386> <Server subsystem failed. Reason: weblogic.security.SecurityInitializationException: Authentication for user wlsadmin denied
    I need to communicate to onsite members about the patch details etc.
    Edited by: user11290902 on May 13, 2011 1:27 AM

    Faisal, Thank you for your response. Here the weblogic console id & password are known to few people so the guess you are making might be correct. Could anyone might have tried with incorrect credentials couple of times before we face this issue, I am not sure though. The moment we provide the credentials and upon click on Log In button we are getting j_security_check.
    http://asdo0002:9683/console/j_security_check
    Authentication Denied.
    The username or password has been refused by WebLogic Server. Please try again.
    Any information about the work--arounds or patches from weblogic would be helpful to me... Thanks a lot.

  • Deskjet 710/720/810/820/1000 Series printers - Patch for 64 bit Vista and Windows 7

    There is an issue with the 64 bit Vista, Windows 7 and Windows 8 or 8.1 drivers that causes the spooler to crash with the following HP Deskjet printers:
    Deskjet 710    
    Deskjet 712 
    Deskjet 720 
    Deskjet 722 
    Deskjet 810 
    Deskjet 812 
    Deskjet 820 
    Deskjet 822 
    Deskjet 1000 
    The attached file contains a patch for this issue for Vista and Windows 7.
    [The patch does not currently work for Windows 8 or 8.1 x64 systems.  There are some efforts to address this, if a solution is developed it will be posted here.  {Edit - I have not made any progress in getting the patch to work in Windows 8 x64.}]  
    First make sure the driver for the printer is installed.  If the driver has not been installed go to Start, Devices and Printers, Add a Printer, Local Printer, choose the proper port (for USB-Parallel converters the port will likely be USB001: or perhaps USB002: ), Next, click Windows Update then choose HP for the manufacturer and select the appropriate printer.   
    Apply the patch as follows: Log into the computer with an administrative account.  Download the patch by clicking on this link or on the paper clip at the end of this post.  Save the patch file to your computer, then unzip it.  Next copy the three DLL files to the following directory:  %windir%\system32\spool\drivers\x64\3   
    Note that %windir% is a system variable that points to the location of the Windows directory. For most systems this will be C:\Windows.  You can click Start, Computer and type %windir%\system32\spool\drivers\x64\3 in the address bar and it will find the right place.
    This can be done from a DOS prompt if DOS is opened with the "run as administrator" command, or from explorer with a copy and paste.  Depending on your UAC settings you may need to provide confirmation.  Also allow the current files to be overwritten if prompted.
    This patch is not required and should not applied to a 32 bit version of Vista or Windows 7.
    Thanks to extraordinary Microsoft engineer Alan Morris for guidance for the patch.
    Update - the following are more detailed installation instructions:
    Download the patch from here. Now click on the file and open it, then extract the patch to some directory that is easy to find. (I use c:\temp. If this directory does not exist you can create it as follows: open the administrative DOS prompt by clicking on Start, All Programs, Accessories, then right click on CMD.EXE and select Run as Administrator. Click in the DOS box then type the following:
    MD c:\temp
    CD \temp
    Now extract the patch files into the c:\temp directory (extract all, chose c:\temp as the destination).
    [Update - Windows security settings may prevent these files from being used, please open Computer, type c:\temp in the address bar and then right click on each of the dll files and select Properties.  If there is a message in Properties indicating the file was downloaded from the internet and may be blocked then unblock the file before proceeding.]
    Next click back in the administrative DOS prompt and type the following: (stuff in green is comments, do not type them...)
    DIR *.dll (this is just to verify the files are there, it should list hpvdb720.dll, hpvdb820.dll and hpwm5db1.dll and perhaps others.)
    Net stop spooler (makes sure the files are not in use.)
    Copy  hpvdb720.dll  C:\windows\system32\spool\drivers\x64\3 (this is for the Deskjet 710/712/720/722)
    Copy  hpvdb820.dll  c:\windows\system32\spool\drivers\x64\3 (this covers the Deskjet 820 and 822)
    Copy  hpwm5db1.dll  c:\windows\system32\spool\drivers\x64\3(this covers the Deskjet 1000)
    Net Start Spooler
    Exit
    [Edit - note that these DLL files will already be in the directory.  You will get a warning asking if it is OK to overwrite the files, say "yes".]
    At this point the patch is installed and ready to print.
    Note that the printers here do not support USB connections, they have only parallel ports. [Edit - if your printer does have a parallel port use it, this will likely be much less problematic than using a USB-Parallel converter.]   If you use a USB-parallel converter make sure it is supported in your operating system.  The following posts are flagged with USB-parallel cables that are reported to work in Windows 7.   A driver is required for the USB-parallel converter in addition to the driver for the printer.  For supported converters this is typically supplied automatically in Windows 7.  Note:  the proper port to select for the USB-Parallel converters is often USB001:.  I have heard of some cases where the port was USB002: or LPT3: as well.  If the port you are using does not succeed (after applying the patch) try changing the port by going to Start, Devices and Printers, right click on your printer and select Printer Properties, then click on the Ports tab.
    Bob Headrick,  HP Expert
    I am not an employee of HP, I am a volunteer posting here on my own time.
    If your problem is solved please click the "Accept as Solution" button ------------V
    If my answer was helpful please click the "Thumbs Up" to say "Thank You"--V
    This question was solved.
    View Solution.
    Attachments:
    DJ_Patch.zip ‏34 KB

    Just want to send a thanks.  Purchased a new HP computer with 64 bit Windows 7 and haven't been able to get my 722c to work. This patch worked like a charm!

  • Any suggested patches for CF9 communicating with SHA2

    Hi. We are still running CF9 and have noticed that HTTPS calls to web services using the newer SHA2 algorithm fail. It appears that CF9 cannot support SHA2. Does anyone have a suggested patch for this issue. Obviously we need to upgrade to CF11, but that will take a couple weeks. Looking for an immediate work-around. We have two installations of CF9 - one enterprise and one standard edition. Any ideas?

    Hi. We are still running CF9 and have noticed that HTTPS calls to web services using the newer SHA2 algorithm fail. It appears that CF9 cannot support SHA2. Does anyone have a suggested patch for this issue. Obviously we need to upgrade to CF11, but that will take a couple weeks. Looking for an immediate work-around. We have two installations of CF9 - one enterprise and one standard edition. Any ideas?

  • HT1338 There is a lot of talk about the Java security issues and the ability to download a patch fix, do i need to do this or will software update pick this up for me?

    There is a lot of talk about the Java security issues and the ability to download an apple patch fix, do i need to do this or will software update pick this up for me?

    Thanks for that, how do I establish if I have Java installed as on Safari preferences it indicates the following
    Web content - Enable Java
                        - Enable JavaScript

  • Are you aware about bash security issue CVE-2014-6271 ? Do you have a patch for that? The problem may exist in all Solaris versions.

    Are you aware about bash security issue CVE-2014-6271 ? Do you have a patch for that? The problem may exist in all Solaris versions.

    The official communication is now posted to
        https://blogs.oracle.com/security/entry/security_alert_cve_2014_7169

  • Is there a patch for the NTP security issue that does not require Xcode?

    Is there a patch for the NTP security issue that does not require Xcode? I have an older Intel mini that can't be upgraded beyond 10.6.8 and I currently don't have room for Xcode 3.2.5. Has somebody trustworthy posted these binaries?

    NTP fix for Snow Leopard: https://drive.google.com/folderview?id=0BxQCbeIgpA2uVjFiN1h4bGZNQ2c&usp=sharing
    You can also go to System Preferences/Date & Time and deselect Set time Automatically.
    Snow Leopard users: Turn off automatic date and time in System Preferences immediately

  • A problem with Client Security Solution patch for Mozilla Firefox3

    After I updated Client Security Solution to 8.20, the password manager cannot work in FF3 again.When I tried to reinstall the patch, it asked me whether to overwrite the files or cancel.  Then it indicates 'This patch has already been installed on this computer', but the problem exsits.

    Borntofly, I am glad that you brought this up as I have not been able to successfully use FF3 with CSS 8.1 or 8.2 and have provided feedback in this thread:
    http://forums.lenovo.com/lnv/board/message?board.id=Special_Interest_Utilities&thread.id=937&view=by...
    As much as I would like to upgrade to FF3, I have not had any success in either using the manual configuration changes noted in the above thread or by using the CSS Patch for FF3 provided by Lenovo on 8/6/08 found here:
    http://www-307.ibm.com/pc/support/site.wss/document.do?sitestyle=lenovo&lndocid=MIGR-70132
    This patch appears to duplicate the manual efforts provided by member KTP in message 12 in the above provided link from what I can see.
    I have never had an issue using the TV password manager and IE7.  It is a very reliable combination.
    I have no issues at all using FF 2.0.0.16, CSS 8.1 or 8.2 (now on 8.2), and Thinkvantage (TV) Password Manager 3.00.0106.00 (came with CSS 8.2).  I have never had Lenovo Password Manager on my T60.  Everything works reliably well with this combination.
    In 3 hours of work yesterday, I was able to get TV Password Manager to show up in the FF3 add-ons as TV Password Manager 3.01 and this is the only way I was able to make it work, but only for a single browser session:
    1. Tools --> Add-Ons
    2. Disable TV Password Manager, then restart FF3
    3. Tools --> Add-Ons
    4. Enable TV Password Manager, then restart FF3
    5. TV Password Manager will work for the duration that I am using the browser session
    Once I close FF3 and reopen it, TV Password Manager no longer works.  The only method I have found to "reset" everything is to perform the above sequence, but again it only works for the single browser session.  It is very consistent.  Although in does not show this in the Add-Ons page, it almost appears that the TV Password Manager add-on is disabled after I close the browser and needs to be manually disabled then enabled as noted above.  If this is due to a conflict with other software on my laptop, I have not been able to determine this.
    In my efforts yesterday, I spent time uninstalling CSS 8.1 or 8.2, FF, and even removed registry entries related to these packages in order to start with a fresh install, all without any success.  I tried fresh installations and added the manual changes promoted by KTP and also tried fresh installations using the Lenovo patches, all without success.  I made attempts to troubleshoot to root cause by removing all add-ons except TV Password Manager, and also tried preventing certain software from installing at startup via msconfig, as well as multiple settings changes within FF3, all to no avail.  Again FF 2.0.0.16 continues to work very well with little effort on my part.  I simply install the software and ensure that TV Password Manager 2.0 in installed in the add-ons and that's it.
    In the above FF3 thread, it appears that others have had success with KTP's changes so I am a little frustrated that I cannot make FF3 and TV Password Manager work reliably.  I have FF2 and IE7 working so I have plenty of good alternatives at this time.  I will post this at the FF3 above as well to see if anyone has any feedback. 
    Moderator(s), do you wish for this thread to be integrated in the original thread for this issue?
    T60, 8744-5BU: 2.0 GHz T7200, 4 GB RAM, 15.4" WSXGA+, 1680x1050 ATI Mobility Radeon X1400, Win 7 Ultimate w/SP1 - 64-bit

  • Is there a patch for Adobe Illustrator CS4 for the issue described in APSB10-29 for CS5?

    APSB10-29 acknowledges a problem that affects CS5 and ALL earlier versions, however only makes available a patch for CS5. We tried using the patch on our CS4 installation, but it says it isn't applicable to our installation. Is there an applicable fix for earlier versions such as ours?

    We use the Nessus vulnerability scanner to check for potential OS and applications security issues, and it's picking up on this vulnerability in our Illustrator CS4 installattion, and it's suggesting we apply the 15.0.2 update, which we can't. So is this likely just a false positive? Do we know for a fact that this issue is strictly a CS5 issue? If that's the case I'll just note it as such and move on. Thanks.

  • I recently took my 27 in i mac to peach mac for service for a flashing green screen. They said it was not a hardware issue but a software issue and want to charge me 99.00 to re-install it. WiIll mac come out with a patch for OS x for this?

    I recently took my 27 in I Mac to Peach Mac for service for a flashing green screen. It comes up when I log in.  They said it was not a hardware issue but a software issue and want to charge me 99.00 to re-install it. WiIll mac come out with a patch for OS x for this? Is this worth it?

    Having a similar issue with my MacBook Pro w/Retina 2012.
    I did the reinstall my self and incrementally did the updates by downloading them from Apple's website instead of using the App Store.
    I found that the problem occured after updating to OS X 10.9.3.
    The issue is in a 4k resolution update for mirroring displays.  Not that you should be doing that from an iMac but your packaged update may have been similar even though the update was meant for 2013 MacBook Pro's.
    You can try reseting the Nvram chip during boot up by pressing "Option + P + R" keys.  You may have to do this after entering your password to log in if you have that set up on your computer.  However this only works on certain models of Mac hardware and may not do anything at all.
    After you get your second opinion from Apple, if they again confirm it's a software issue, then you should reinstall OS X Mavericks and download updates from the website instead of the app store.  This way you control your updates.  You will find the OS X 10.9.2 update as well as a seperate security update prior to the released update of the dreaded OS X 10.9.3
    Again if you don't want the issue to occur again, then hold off on updating to OS X 10.9.3, but be cautioned that you do so at the risk of leaving your computer less secured even though it will seem to run better.

  • HT6147 I have 2 fully functioning iPad 1st Gen but there is no security patch for them?!!!?!

    I have 2 fully functioning iPad 1st Gen but there is no security patch for them?!!!?!

    No, because the security issue is not present in iOS 5 Safari.  Only in iOS 6 and 7 versions.   

Maybe you are looking for