pkgsrc-changes: CVS commit: pkgsrc/net/samba

Subject: CVS commit: pkgsrc/net/samba
To: None <pkgsrc-changes@netbsd.org>
From: Martti Kuparinen <martti@netbsd.org>
List: pkgsrc-changes
Date: 11/21/2002 10:09:10
Module Name:	pkgsrc
Committed By:	martti
Date:		Thu Nov 21 08:09:09 UTC 2002

Modified Files:
	pkgsrc/net/samba: Makefile Makefile.common distinfo

Log Message:
Updated samba to 2.2.7

A security hole has been discovered in versions 2.2.2 through 2.2.6
of Samba that could potentially allow an attacker to gain root access
on the target machine.  The word "potentially" is used because there
is no known exploit of this bug, and the Samba Team has not been able to
craft one ourselves. However, the seriousness of the problem warrants
this immediate 2.2.7 release.

1)  ensure we send the notify message in the same way it is expected
    to be received by srv_spoolss_receive_message().
2)  attribute matching on truncate only matters when opening truncate
    with current SYSTEM|HIDDEN -> NONE. It's fine to truncate on open
    with current NONE -> SYSTEM | HIDDEN.
3)  Fix bug in rpcclient's deldriver command
4)  Don't set global_machine_password_needs_changing if
    lp_machine_password_timeout() is set to zero
5)  don't parse the BUFFER5 if the buffer length is zero
6)  fix core dump if pdbedit is run as non-root or smbpasswd file does
    not exist
7)  Ensure can_delete() returns correct error code
8)  correctly return NT_STATUS_DELETE_PENDING from open code
9)  fix bug that assumed dos_unistr2 length was in ucs2 units, not bytes
10) check the long_archi name is not null when deleting a printer driver.
    fixes core dump in smbd when using rpcclient's deldriver
11) fix fd leak with kernel change notify on Linux 2.4 kernels
12) must add one to the extra_data size to transfer the 0 string
    terminator.  This was causing "wbinfo --sequence" to access past the
    end of malloced memory
13) fix for large systems allowing more than 65536 files open in
    NTcreate&X
14) Fix bug in %U expansion


To generate a diff of this commit:
cvs rdiff -r1.91 -r1.92 pkgsrc/net/samba/Makefile
cvs rdiff -r1.3 -r1.4 pkgsrc/net/samba/Makefile.common
cvs rdiff -r1.23 -r1.24 pkgsrc/net/samba/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.