Next | Query returned 29 messages, browsing 1 to 10 | Previous

History of commit frequency

CVS Commit History:


   2021-11-10 14:32:10 by Adam Ciarcinski | Files touched by this commit (2) | Package updated
Log message:
ldb: updated to 2.2.3

2.2.3:
Unknown changes
   2021-10-26 12:10:08 by Nia Alarie | Files touched by this commit (417)
Log message:
databases: Replace RMD160 checksums with BLAKE2s checksums

All checksums have been double-checked against existing RMD160 and
SHA512 hashes

The following distfiles could not be fetched (some may be only fetched
conditionally):

./databases/cstore/distinfo D6.data.ros.gz
./databases/cstore/distinfo cstore0.2.tar.gz
./databases/cstore/distinfo data4.tar.gz
   2021-10-07 15:35:53 by Nia Alarie | Files touched by this commit (417)
Log message:
databases: Remove SHA1 distfile hashes
   2021-06-22 11:36:41 by Nia Alarie | Files touched by this commit (10)
Log message:
samba4: downgrade to 4.13.9, as discussed on netbsd-users@
   2021-05-11 12:57:34 by Hauke Fath | Files touched by this commit (4)
Log message:
Re-enable building databases/ldb without ldap support.
   2021-04-14 21:07:49 by Adam Ciarcinski | Files touched by this commit (2) | Package updated
Log message:
ldb: updated to 2.3.0

2.3.0:
Unknown changes
   2021-03-24 17:33:46 by Adam Ciarcinski | Files touched by this commit (4) | Package updated
Log message:
ldb: updated to 2.2.1; samba: updated to 4.13.7

                   ==============================
                   Release Notes for Samba 4.13.7
                           March 24, 2021
                   ==============================

This is a follow-up release to depend on the correct ldb version. This is only
needed when building against a system ldb library.

This is a security release in order to address the following defects:

o CVE-2020-27840: Heap corruption via crafted DN strings.
o CVE-2021-20277: Out of bounds read in AD DC LDAP server.

=======
Details
=======

o  CVE-2020-27840:
   An anonymous attacker can crash the Samba AD DC LDAP server by sending easily
   crafted DNs as part of a bind request. More serious heap corruption is likely
   also possible.

o  CVE-2021-20277:
   User-controlled LDAP filter strings against the AD DC LDAP server may crash
   the LDAP server.

For more details, please refer to the security advisories.

Changes since 4.13.6
--------------------

o  Release with dependency on ldb version 2.2.1.
   2020-12-04 21:45:51 by Nia Alarie | Files touched by this commit (456)
Log message:
Revbump packages with a runtime Python dep but no version prefix.

For the Python 3.8 default switch.
   2020-11-12 07:26:57 by Adam Ciarcinski | Files touched by this commit (2) | Package updated
Log message:
ldb: updated to 2.2.0

2.2.0:
Unknown changes
   2020-07-06 16:29:42 by Adam Ciarcinski | Files touched by this commit (2) | Package updated
Log message:
ldb: updated to 2.1.4

2.1.4:
Unknown changes

Next | Query returned 29 messages, browsing 1 to 10 | Previous