Navigation:
Browse pkgsrc
(this page)
New packages:Log Message:
Pullup ticket #5933 - requested by taca
net/samba4: security fix
Revisions pulled up:
- net/samba4/Makefile 1.64-1.65
- net/samba4/PLIST 1.22
- net/samba4/distinfo 1.26-1.27
---
Module Name: pkgsrc
Committed By: adam
Date: Wed Apr 3 14:23:06 UTC 2019
Modified Files:
pkgsrc/net/samba4: Makefile distinfo
Log Message:
samba4: updated to 4.10.1
Changes since 4.10.0:
* BUG 13837: py/kcc_utils: py2.6 compatibility.
* BUG 13869: libcli: permit larger values of DataLength in
SMB2_ENCRYPTION_CAPABILITIES of negotiate response.
* BUG 13840: regfio: Improve handling of malformed registry hive files.
* BUG 13789: ctdb-version: Simplify version string usage.
* BUG 13859: lib: Make fd_load work for non-regular files.
* BUG 13816: dbcheck in the middle of the tombstone garbage collection causes
replication failures, dbcheck: add --selftest-check-expired-tombstones
cmdline option.
* BUG 13818: ndr_spoolss_buf: Fix out of scope use of stack variable in
NDR_SPOOLSS_PUSH_ENUM_OUT().
* BUG 13854: s4/messaging: Fix undefined reference in linking
libMESSAGING-samba4.so.
* BUG 13836: acl_read: Fix regression for empty lists.
* BUG 13841: s4:dlz make b9_has_soa check dc=@ node.
* BUG 13832: s3:client: Fix printing via smbspool backend with kerberos auth.
* BUG 13847: s4:librpc: Fix installation of Samba.
* BUG 13848: s3:lib: Fix the debug message for adding cache entries.
* BUG 13793: s3:utils: Add 'smbstatus -L --resolve-uids' to show username.
* BUG 13848: s3:lib: Fix the debug message for adding cache entries.
* BUG 13853: s3:waf: Fix the detection of makdev() macro on Linux.
* BUG 13789: ctdb-build: Drop creation of .distversion in tarball.
* BUG 13838: ctdb-packaging: Test package requires tcpdump, ctdb package
should not own system library directory.
---
Module Name: pkgsrc
Committed By: adam
Date: Mon Apr 8 18:35:59 UTC 2019
Modified Files:
pkgsrc/net/samba4: Makefile PLIST distinfo
Log Message:
samba4: updated to 4.10.2
Release Notes for Samba 4.10.2
This is a security release in order to address the following defects:
o CVE-2019-3870 (World writable files in Samba AD DC private/ dir)
o CVE-2019-3880 (Save registry file outside share as unprivileged user)
Details
o CVE-2019-3870:
During the provision of a new Active Directory DC, some files in the private/
directory are created world-writable.
o CVE-2019-3880:
Authenticated users with write permission can trigger a symlink traversal to
write or detect files outside the Samba share.
For more details and workarounds, please refer to the security advisories.
Changes since 4.10.1:
* BUG 13834: CVE-2019-3870: pysmbd: Ensure a zero umask is set for
smbd.mkdir().
* BUG 13851: CVE-2018-14629: rpc: winreg: Remove implementations of
SaveKey/RestoreKey.
| Revision | Action | file |
| 1.63.2.1 | modify | pkgsrc/net/samba4/Makefile |
| 1.21.2.1 | modify | pkgsrc/net/samba4/PLIST |
| 1.25.2.1 | modify | pkgsrc/net/samba4/distinfo |