pkgsrc-Changes archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
CVS commit: pkgsrc/net/samba4
Module Name: pkgsrc
Committed By: taca
Date: Thu Jul 20 01:28:34 UTC 2023
Modified Files:
pkgsrc/net/samba4: Makefile distinfo
Log Message:
net/samba4: update to 4.18.5
==============================
Release Notes for Samba 4.18.5
July 19, 2023
==============================
This is a security release in order to address the following defects:
o CVE-2022-2127: When winbind is used for NTLM authentication, a maliciously
crafted request can trigger an out-of-bounds read in winbind
and possibly crash it.
https://www.samba.org/samba/security/CVE-2022-2127.html
o CVE-2023-3347: SMB2 packet signing is not enforced if an admin configured
"server signing = required" or for SMB2 connections to Domain
Controllers where SMB2 packet signing is mandatory.
https://www.samba.org/samba/security/CVE-2023-3347.html
o CVE-2023-34966: An infinite loop bug in Samba's mdssvc RPC service for
Spotlight can be triggered by an unauthenticated attacker by
issuing a malformed RPC request.
https://www.samba.org/samba/security/CVE-2023-34966.html
o CVE-2023-34967: Missing type validation in Samba's mdssvc RPC service for
Spotlight can be used by an unauthenticated attacker to
trigger a process crash in a shared RPC mdssvc worker process.
https://www.samba.org/samba/security/CVE-2023-34967.html
o CVE-2023-34968: As part of the Spotlight protocol Samba discloses the server-
side absolute path of shares and files and directories in
search results.
https://www.samba.org/samba/security/CVE-2023-34968.html
Changes since 4.18.4
--------------------
o Ralph Boehme <slow%samba.org@localhost>
* BUG 15072: CVE-2022-2127.
* BUG 15340: CVE-2023-34966.
* BUG 15341: CVE-2023-34967.
* BUG 15388: CVE-2023-34968.
* BUG 15397: CVE-2023-3347.
o Volker Lendecke <vl%samba.org@localhost>
* BUG 15072: CVE-2022-2127.
o Stefan Metzmacher <metze%samba.org@localhost>
* BUG 15418: Secure channel faulty since Windows 10/11 update 07/2023.
To generate a diff of this commit:
cvs rdiff -u -r1.166 -r1.167 pkgsrc/net/samba4/Makefile
cvs rdiff -u -r1.94 -r1.95 pkgsrc/net/samba4/distinfo
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
Modified files:
Index: pkgsrc/net/samba4/Makefile
diff -u pkgsrc/net/samba4/Makefile:1.166 pkgsrc/net/samba4/Makefile:1.167
--- pkgsrc/net/samba4/Makefile:1.166 Wed Jul 19 15:33:27 2023
+++ pkgsrc/net/samba4/Makefile Thu Jul 20 01:28:34 2023
@@ -1,6 +1,6 @@
-# $NetBSD: Makefile,v 1.166 2023/07/19 15:33:27 wiz Exp $
+# $NetBSD: Makefile,v 1.167 2023/07/20 01:28:34 taca Exp $
-DISTNAME= samba-4.18.4
+DISTNAME= samba-4.18.5
CATEGORIES= net
MASTER_SITES= https://download.samba.org/pub/samba/stable/
Index: pkgsrc/net/samba4/distinfo
diff -u pkgsrc/net/samba4/distinfo:1.94 pkgsrc/net/samba4/distinfo:1.95
--- pkgsrc/net/samba4/distinfo:1.94 Wed Jul 19 15:33:27 2023
+++ pkgsrc/net/samba4/distinfo Thu Jul 20 01:28:34 2023
@@ -1,8 +1,8 @@
-$NetBSD: distinfo,v 1.94 2023/07/19 15:33:27 wiz Exp $
+$NetBSD: distinfo,v 1.95 2023/07/20 01:28:34 taca Exp $
-BLAKE2s (samba-4.18.4.tar.gz) = 10d5c7dc7c05f4f47dc5bceb936c820db574208bdfd4ed3e4625275756f30b69
-SHA512 (samba-4.18.4.tar.gz) = bc8d792b510061556c07b6844a825801a4271eed45e01133a4718c1839d123e2908fa0e31e67af43098500e98a9082eb104052e711a8a034fac23d86e15c29ee
-Size (samba-4.18.4.tar.gz) = 41311410 bytes
+BLAKE2s (samba-4.18.5.tar.gz) = e7b9c7cf8adbe2c42e21d416aff8a18e7c11bcf458cc16d45747b104ed478edb
+SHA512 (samba-4.18.5.tar.gz) = c12b7cd7aba0941bf178c89604f926347bee4f5bb6ea651930cc93bcd8a2cfa983b1f10a0ccb55f99c5b34b9f158d1059d06d7f39f7bc261c7dd0d8c89c5a6f5
+Size (samba-4.18.5.tar.gz) = 41315373 bytes
SHA1 (patch-buildtools_wafsamba_samba__conftests.py) = d927db17124d2bb5b382885e70a41f84c3929926
SHA1 (patch-buildtools_wafsamba_samba__install.py) = d801340617da325e3bb70a90350e45cc8e383c2d
SHA1 (patch-buildtools_wafsamba_samba__pidl.py) = e4c0ed3dacfcf5613a5b397b3c6cf88509497da7
Home |
Main Index |
Thread Index |
Old Index