Navigation:
Browse pkgsrc
(this page)| 2020-07-21 20:42:25 by Christos Zoulas | Files touched by this commit (3) |
Log message: Fix arguments to getgroupmembership |
| 2020-07-21 00:19:58 by Thomas Klausner | Files touched by this commit (1) |
Log message: samba4: NetBSD current supports ACL, add it to allow-list |
2020-07-06 16:38:06 by Adam Ciarcinski | Files touched by this commit (4) |  |
Log message:
samba4: updated to 4.12.5
Changes since 4.12.4
--------------------
* BUG 14301: Fix smbd panic on force-close share during async io.
* BUG 14374: Fix segfault when using SMBC_opendir_ctx() routine for share
folder that contains incorrect symbols in any file name.
* BUG 14391: Fix DFS links.
* BUG 14310: Can't use DNS functionality after a Windows DC has been in
domain.
* BUG 14413: ldapi search to FreeIPA crashes.
* BUG 14396: Add net-ads-join dnshostname=fqdn option.
* BUG 14406: Fix adding msDS-AdditionalDnsHostName to keytab with Windows DC.
* BUG 14386: docs-xml: Update list of posible VFS operations for
vfs_full_audit.
* BUG 14382: winbindd: Fix a use-after-free when winbind clients exit.
* BUG 14370: Client tools are not able to read gencache anymore.
Samba 4.12.4
============
o CVE-2020-10730:
A client combining the 'ASQ' and 'VLV' LDAP controls can cause a NULL pointer
de-reference and further combinations with the LDAP paged_results feature can
give a use-after-free in Samba's AD DC LDAP server.
o CVE-2020-10745: Parsing and packing of NBT and DNS packets can consume
excessive CPU.
o CVE-2020-10760:
The use of the paged_results or VLV controls against the Global Catalog LDAP
server on the AD DC will cause a use-after-free.
o CVE-2020-14303:
The AD DC NBT server in Samba 4.0 will enter a CPU spin and not process
further requests once it receives an empty (zero-length) UDP packet to
port 137.
For more details, please refer to the security advisories.
Changes since 4.12.3
--------------------
* BUG 14378: CVE-2020-10745: Invalid DNS or NBT queries containing dots use
several seconds of CPU each.
* BUG 14364: CVE-2020-10730: NULL de-reference in AD DC LDAP server when ASQ
and VLV combined.
* BUG 14402: CVE-2020-10760: Fix use-after-free in AD DC Global Catalog LDAP
server with paged_result or VLV.
* BUG 14417: CVE-2020-14303: Fix endless loop from empty UDP packet sent to
AD DC nbt_server.
* BUG 14364: CVE-2020-10730: NULL de-reference in AD DC LDAP server when ASQ
and VLV combined, ldb: Bump version to 2.1.4.
|
| 2020-05-26 15:11:01 by Jonathan Perkin | Files touched by this commit (3) |
Log message: samba4: Avoid conflict with host s_addr. |
| 2020-05-26 14:22:57 by Jonathan Perkin | Files touched by this commit (1) |
Log message: samba4: Fix ads suggested option. This is enabled later for suitable platforms, so adding it here either made that test completely pointless, or added the option twice. |
| 2020-05-22 12:56:49 by Adam Ciarcinski | Files touched by this commit (624) |
Log message: revbump after updating security/nettle |
| 2020-05-20 06:26:38 by Tom Spindler | Files touched by this commit (1) |
Log message: Require docbook-xsl>=1.79.2 for building smb.conf.5; otherwise, it errors out with runtime error: file /usr/pkg/share/xsl/docbook/lib/lib.xsl line 58 element choose xsltApplySequenceConstructor: A potential infinite template recursion was detected. |
| 2020-05-19 18:51:43 by Adam Ciarcinski | Files touched by this commit (4) | |
Log message: net/samba4 databases/ldb: updated to 4.12.3 2.1.3 Changes 4.12.3: * BUG 14301: Fix smbd panic on force-close share during async io. * BUG 14343: s3: vfs_full_audit: Add missing fcntl entry in vfs_op_names[] array. * BUG 14361: vfs_io_uring: Fix data corruption with Windows clients. * BUG 14372: Fix smbd crashes when MacOS Catalina connects if iconv initialization fails. * BUG 14150: Exporting from macOS Adobe Illustrator creates multiple copies. * BUG 14256: smbd does a chdir() twice per request. * BUG 14320: smbd mistakenly updates a file's write-time on close. * BUG 14350: vfs_shadow_copy2: implement case canonicalisation in shadow_copy2_get_real_filename(). * BUG 14375: Fix Windows 7 clients problem after upgrading samba file server. * BUG 14359: s3: Pass DCE RPC handle type to create_policy_hnd. * BUG 14155: Fix uxsuccess test with new MIT krb5 library 1.18. * BUG 14342: mit-kdc: Explicitly reject S4U requests. * BUG 14352: dbwrap_watch: Set rec->value_valid while returning nested share_mode_do_locked(). * BUG 14345: lib:util: Fix smbclient -l basename dir. * BUG 14336: s3:libads: Fix ads_get_upn(). * BUG 14348: ctdb: Fix a memleak. * BUG 14366: Malicous SMB1 server can crash libsmbclient. * BUG 14330: ldb: Bump version to 2.1.3, LMDB databases can grow without bounds * BUG 14361: vfs_io_uring: Fix data corruption with Windows clients. * BUG 14344: s3/librpc/crypto: Fix double free with unresolved credential cache. * BUG 14358: docs-xml: Fix usernames in pam_winbind manpages. |
| 2020-05-19 14:13:51 by Hauke Fath | Files touched by this commit (4) |
Log message: The smb.conf(5) man page builds fine on netbsd-9, so re-add it. This is probably the most important of the Samba man pages, and it should not have been excluded from the build without a detailed explanation, "just to make the pkg build". |
| 2020-05-13 06:29:24 by Roland Illig | Files touched by this commit (1) |
Log message: net/samba4: remove nonexistent file from REPLACE_PERL |
New packages: