[Pkg-samba-maint] r2300 - in trunk/samba/debian: . patches

bubulle at alioth.debian.org bubulle at alioth.debian.org
Mon Jan 5 18:29:02 UTC 2009 

Author: bubulle
Date: 2009-01-05 18:29:01 +0000 (Mon, 05 Jan 2009)
New Revision: 2300

Added:
   trunk/samba/debian/patches/smbd-prevent-access-to-root-filesystem-when-connect.patch
Modified:
   trunk/samba/debian/changelog
   trunk/samba/debian/patches/series
Log:
Release 2:3.2.5-3


Modified: trunk/samba/debian/changelog
===================================================================
--- trunk/samba/debian/changelog	2009-01-04 21:47:23 UTC (rev 2299)
+++ trunk/samba/debian/changelog	2009-01-05 18:29:01 UTC (rev 2300)
@@ -1,11 +1,14 @@
-samba (2:3.2.5-3) UNRELEASED; urgency=low
+samba (2:3.2.5-3) unstable; urgency=high
 
+  * Security update
+  * Fix Potential access to "/" in setups with registry shares enabled
+    This fixes CVE-2009-0022, backported from 3.2.7
   * Fix links in HTML documentation index file.
     Closes: #508388
   * Drop spurious docs-xml/smbdotconf/parameters.global.xml.new
     file in the diff. Thanks to the release managers for spotting it
 
- -- Christian Perrier <bubulle at debian.org>  Thu, 18 Dec 2008 06:42:37 +0100
+ -- Christian Perrier <bubulle at debian.org>  Sun, 21 Dec 2008 08:09:31 +0100
 
 samba (2:3.2.5-2) unstable; urgency=low
 

Modified: trunk/samba/debian/patches/series
===================================================================
--- trunk/samba/debian/patches/series	2009-01-04 21:47:23 UTC (rev 2299)
+++ trunk/samba/debian/patches/series	2009-01-05 18:29:01 UTC (rev 2300)
@@ -20,3 +20,4 @@
 shrink-dead-code.patch
 documentation-links.patch
 documentation-links-debian.patch
+smbd-prevent-access-to-root-filesystem-when-connect.patch

Added: trunk/samba/debian/patches/smbd-prevent-access-to-root-filesystem-when-connect.patch
===================================================================
--- trunk/samba/debian/patches/smbd-prevent-access-to-root-filesystem-when-connect.patch	                        (rev 0)
+++ trunk/samba/debian/patches/smbd-prevent-access-to-root-filesystem-when-connect.patch	2009-01-05 18:29:01 UTC (rev 2300)
@@ -0,0 +1,25 @@
+Goal: Fix Potential access to "/" in setups with registry shares enabled
+
+Fixes: CVE-2009-0022
+
+Status wrt upstream: Fixed in 3.2.7
+
+Author: Michael Adam <obnox at samba.org>
+
+Note: 
+
+Index: samba-3.2.5/source/smbd/service.c
+===================================================================
+--- samba-3.2.5.orig/source/smbd/service.c
++++ samba-3.2.5/source/smbd/service.c
+@@ -235,6 +235,10 @@
+ 		return -1;
+ 	}
+ 
++	if ((servicename == NULL) || (*servicename == '\0')) {
++		return -1;
++	}
++
+ 	if (strequal(servicename, GLOBAL_NAME)) {
+ 		return -2;
+ 	}

More information about the Pkg-samba-maint mailing list