./net/samba, SMB/CIFS protocol server suite

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]

Branch: CURRENT, Version: 3.6.25nb2, Package name: samba-3.6.25nb2, Maintainer: pkgsrc-users

Samba provides file and print services for Microsoft Windows clients.
These services may be hosted off any TCP/IP-enabled platform. The
Samba project includes not only an impressive feature set in file and
print serving capabilities, but has been extended to include client
functionality, utilities to ease migration to Samba, tools to aid
interoperability with Microsoft Windows, and administration tools.

DEINSTALL.nss_winbind [+/-]

Required to run:
[databases/tdb] [lang/perl5] [devel/popt] [devel/readline]

Package options: ads, ldap, pam, winbind

Master sites: (Expand)

SHA1: 86fbfcfe80454cc7dbe510e7d58c02922cac3efa
RMD160: 4df673ddac2a3fc8590820c8651e10f0dac90281
Filesize: 33322.098 KB

Version history: (Expand)

CVS history: (Expand)

   2015-06-12 12:52:19 by Thomas Klausner | Files touched by this commit (3152)
Log message:
Recursive PKGREVISION bump for all packages mentioning 'perl',
having a PKGNAME of p5-*, or depending such a package,
for perl-5.22.0.
   2015-05-29 11:01:09 by Emmanuel Dreyfus | Files touched by this commit (3)
Log message:
Fix Samba ability to use LDAP/SSL with a SHA2 certificate

NetBSD's libc and Samba both proide SHA2 function with the same
protoype, but with different private context structures. The
Samba version must not override the libc version, otherwise they
are used when using LDAP/SSL, through libldap/libssl/libcrypto
but libcrtypo expect to use the libc flavor.

Without this fix, Samba cannot connect to a LDAP directory that
has a SHA2-signed certificate. This rather cryptic error is raised
in smbd logs:
error:0D0C5006:asn1 encoding routines:ASN1_item_verify:EVP lib
   2015-05-19 13:48:05 by Ryo ONODERA | Files touched by this commit (1)
Log message:
Restrict buildlink3 requirement, samba<4.
   2015-05-10 14:55:03 by Ryo ONODERA | Files touched by this commit (1)
Log message:
Fix pasto.
fam for File Alteration Monitor.
   2015-03-01 19:27:25 by Sevan Janiyan | Files touched by this commit (1)
Log message:
Account for the libraries installed on FreeBSD

Reviewed by wiz@
   2015-02-24 10:54:47 by Takahiro Kambe | Files touched by this commit (2) | Package updated
Log message:
Update samba package to 3.6.25.

                   Release Notes for Samba 3.6.25
                          February 23, 2015

This is a security release in order to address CVE-2015-0240 (Unexpected
code execution in smbd).

o  CVE-2015-0240:
   All versions of Samba from 3.5.0 to 4.2.0rc4 are vulnerable to an
   unexpected code execution vulnerability in the smbd file server

   A malicious client could send packets that may set up the stack in
   such a way that the freeing of memory in a subsequent anonymous
   netlogon packet could allow execution of arbitrary code. This code
   would execute with root privileges.

o  CVE-2014-0178:
   In preparing a response to an authenticated FSCTL_GET_SHADOW_COPY_DATA
   or FSCTL_SRV_ENUMERATE_SNAPSHOTS client request, affected versions of
   Samba do not initialize 8 bytes of the 16 byte SRV_SNAPSHOT_ARRAY
   response field. The uninitialized buffer is sent back to the client.

   A non-default VFS module providing the get_shadow_copy_data_fn() hook
   must be explicitly enabled for Samba to process the aforementioned
   client requests. Therefore, only configurations with "shadow_copy" or
   "shadow_copy2" specified for the "vfs objects" parameter \ 
are vulnerable.
   2015-02-02 11:42:18 by Jonathan Perkin | Files touched by this commit (2)
Log message:
SunOS inotify requires sys/filio.h for FIONREAD.
   2015-01-23 09:09:37 by OBATA Akio | Files touched by this commit (3)
Log message:
tell pidfile name