[Pkg-samba-maint] samba_4.17.7+dfsg-1_source.changes ACCEPTED into unstable

[Debian FTP Masters]

Thank you for your contribution to Debian.



Accepted:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 29 Mar 2023 17:59:17 +0300
Source: samba
Architecture: source
Version: 2:4.17.7+dfsg-1
Distribution: unstable
Urgency: high
Maintainer: Debian Samba Maintainers <pkg-samba-maint at lists.alioth.debian.org>
Changed-By: Michael Tokarev <mjt at tls.msk.ru>
Changes:
 samba (2:4.17.7+dfsg-1) unstable; urgency=high
 .
   * upstream stable/security/bugfix release, fixing the following issues:
     o CVE-2023-0225: An incomplete access check on dnsHostName allows
       authenticated but otherwise unprivileged users to delete this
       attribute from any object in the directory.
       https://www.samba.org/samba/security/CVE-2023-0225.html
     o CVE-2023-0922: The Samba AD DC administration tool, when operating
       against a remote LDAP server, will by default send new or reset
       passwords over a signed-only connection.
       https://www.samba.org/samba/security/CVE-2023-0922.html
     o CVE-2023-0614: Fix in 4.6.16, 4.7.9, 4.8.4 and 4.9.7 for CVE-2018-10919
       Confidential attribute disclosure via LDAP filters was insufficient and
       an attacker may be able to obtain confidential BitLocker recovery keys
       from a Samba AD DC.  Installations with such secrets in their Samba AD
       should assume they have been obtained and need replacing.
       https://www.samba.org/samba/security/CVE-2023-0614.html
     Closes: CVE-2023-0225 CVE-2023-0922 CVE-2023-0614
   * update libldb symbols and versions
Checksums-Sha1:
 16019603bb68c5cd7269f58d48b49a281a6220f1 4398 samba_4.17.7+dfsg-1.dsc
 f05b964cbf90b51e7bc3f256be38744d2c4c4768 18433248 samba_4.17.7+dfsg.orig.tar.xz
 73f216239de818b95aed1bbf3c1f852e6e2cba9f 269312 samba_4.17.7+dfsg-1.debian.tar.xz
 bec5803616a7eaba866a2528760d1bca347a7a26 5959 samba_4.17.7+dfsg-1_source.buildinfo
Checksums-Sha256:
 d47500dca72084d64a766fec41a867ea16caa13ba3a95e98998c46e55c4a6f5b 4398 samba_4.17.7+dfsg-1.dsc
 6ce3884d020a1dd3a8674ece98fbc27cfa4b67065f3bd300d31909a4678e4038 18433248 samba_4.17.7+dfsg.orig.tar.xz
 57e0c7d64febf477c5a42950b5784aa6be3bbc6fae5daf48306c64a30fbb9633 269312 samba_4.17.7+dfsg-1.debian.tar.xz
 6b064b78de34d5861c0f7a45a345cb65a6de625bb02fe175b90545f0076f3bbf 5959 samba_4.17.7+dfsg-1_source.buildinfo
Files:
 1f439f36bb9a8e1ce9ef47dbec4885bd 4398 net optional samba_4.17.7+dfsg-1.dsc
 5dff7721e162321ccff9a1e307a24ca2 18433248 net optional samba_4.17.7+dfsg.orig.tar.xz
 428c69002cc3562d6c4a9a9f14472aa9 269312 net optional samba_4.17.7+dfsg-1.debian.tar.xz
 4442fdf8e3e2ee3c0aebccfbcca97934 5959 net optional samba_4.17.7+dfsg-1_source.buildinfo

-----BEGIN PGP SIGNATURE-----

iQFDBAEBCgAtFiEEe3O61ovnosKJMUsicBtPaxppPlkFAmQkWGEPHG1qdEB0bHMu
bXNrLnJ1AAoJEHAbT2saaT5Z8TAH/0+rE+Kk/439YqqEcZpqLTMf/If+BmykoqNr
lZ/i3+IoTYu8WN+CHyZmSz6AfwE4I7LueisN1L7g9dpvEMIUKDC1nnlcOXN04W2F
p5jAIq7Ag1aNXI9HambhbbAA0cHY3DVwryL9ZO7hxylD7EplZ7RMZY5qeViUgHwU
fNjf3rC1B0h9F8JZ1wjQRJEU6xJnqlAMZy7ZOr776uakvpDtX2sJVlewJ6ygI/MO
bXry61wVu5v6vl/SrwfK1DWsAmxhgxFXhJPgo/YeHOLJT6+Fe+WyzY4XRglpiQLn
HS+s/oizBMdYcO/vnfX1Xg8w0No2OsjKr5cdHGykyh5bBrxbMA4=
=HrR0
-----END PGP SIGNATURE-----