Navigation:
Browse pkgsrc
(this page)
New packages:Log Message:
Pullup ticket #6125 - requested by taca
net/samba4: security fix
Revisions pulled up:
- net/samba4/Makefile 1.86-1.89
- net/samba4/PLIST 1.25
- net/samba4/distinfo 1.39-1.41
- net/samba4/patches/patch-source4_utils_oLschema2ldif_wscript__build 1.1
---
Module Name: pkgsrc
Committed By: adam
Date: Mon Dec 30 13:58:35 UTC 2019
Modified Files:
pkgsrc/net/samba4: Makefile PLIST distinfo
Log Message:
samba4: updated to 4.11.4
Changes since 4.11.3:
* BUG 14161: s3: libsmb: Ensure SMB1 cli_qpathinfo2() doesn't return an inode
number.
* BUG 14174: s3: utils: smbtree. Ensure we don't call cli_RNetShareEnum()
on an SMB1 connection.
* BUG 14176: NT_STATUS_ACCESS_DENIED becomes EINVAL when using SMB2 in
SMBC_opendir_ctx.
* BUG 14189: s3: smbd: SMB2 - Ensure we use the correct session_id if
encrypting an interim response.
* BUG 14205: Prevent smbd crash after invalid SMB1 negprot.
* BUG 13745: s3:printing: Fix %J substition.
* BUG 13925: s3: Remove now unneeded call to cmdline_messaging_context().
* BUG 14069: Incomplete conversion of former parametric options.
* BUG 14070: Fix sync dosmode fallback in async dosmode codepath.
* BUG 14171: vfs_fruit returns capped resource fork length.
* BUG 14116: libnet_join: Add SPNs for additional-dns-hostnames entries.
* BUG 14211: smbd: Increase a debug level.
* BUG 14153: Prevent azure ad connect from reporting discovery errors:
reference-value-not-ldap-conformant.
* BUG 14179: krb5_plugin: Fix developer build with newer heimdal system
library.
* BUG 14168: replace: Only link libnsl and libsocket if requrired.
* BUG 14175: ctdb: Incoming queue can be orphaned causing communication
breakdown.
* BUG 13846: ldb: Release ldb 2.0.8. Cross-compile will not take
cross-answers or cross-execute.
* BUG 13856: heimdal-build: Avoid hard-coded /usr/include/heimdal in
asn1_compile-generated code.
---
Module Name: pkgsrc
Committed By: jperkin
Date: Wed Jan 8 10:40:03 UTC 2020
Modified Files:
pkgsrc/net/samba4: distinfo
Added Files:
pkgsrc/net/samba4/patches:
patch-source4_utils_oLschema2ldif_wscript__build
Log Message:
samba4: Disable more fmemopen utilities on SunOS.
---
Module Name: pkgsrc
Committed By: jperkin
Date: Sat Jan 18 21:51:16 UTC 2020
Modified Files:
pkgsrc/net/samba4: Makefile
Log Message:
*: Recursive revision bump for openssl 1.1.1.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Jan 21 14:12:36 UTC 2020
Modified Files:
pkgsrc/net/samba4: Makefile distinfo
Log Message:
net/samba4: update to 4.11.5
Update samba4 to 4.11.5.
==============================
Release Notes for Samba 4.11.5
January 21, 2020
==============================
This is a security release in order to address the following defects:
o CVE-2019-14902: Replication of ACLs set to inherit down a subtree on AD
Directory not automatic.
o CVE-2019-14907: Crash after failed character conversion at log level 3 or
above.
o CVE-2019-19344: Use after free during DNS zone scavenging in Samba AD DC.
=======
Details
=======
o CVE-2019-14902:
The implementation of ACL inheritance in the Samba AD DC was not complete,
and so absent a 'full-sync' replication, ACLs could get out of sync between
domain controllers.
o CVE-2019-14907:
When processing untrusted string input Samba can read past the end of the
allocated buffer when printing a "Conversion error" message to \
the logs.
o CVE-2019-19344:
During DNS zone scavenging (of expired dynamic entries) there is a read of
memory after it has been freed.
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Jan 27 14:04:13 UTC 2020
Modified Files:
pkgsrc/net/samba4: Makefile
Log Message:
net/samba4: update depdendency
Update dependency for daabases/ldb and devel/talloc.
Bump PKGREVISION.