[Pkg-samba-maint] Situation of current samba security issues
Christian Perrier
bubulle at debian.org
Thu Oct 8 04:36:33 UTC 2009
Quoting Nico Golde (nico at ngolde.de):
> http://people.debian.org/~nion/samba-3.2.14-CVE-2009-2948-2.patch
>
> I did a few test and it seems to work as expected but please test as well :)
Well, using it along with all other upstream patches:
-samba-3.2.14-CVE-2009-2913.patch
-samba-3.2.14-CVE-2009-2906.patch
-samba-3.2.14-CVE-2009-2948-1.patch
...gives me this when I build the package:
Compiling client/mount.cifs.c
client/mount.cifs.c: In function 'get_password_from_file':
client/mount.cifs.c:324: error: 'EX_SYSERR' undeclared (first use in this function)
client/mount.cifs.c:324: error: (Each undeclared identifier is reported only once
client/mount.cifs.c:324: error: for each function it appears in.)
The following command failed:
gcc -I. -I/tmp/buildd/samba-3.2.5/source -O -D_SAMBA_BUILD_=3 -I/tmp/buildd/samba-3.2.5/source/iniparser/src -Iinclude -I./include -I. -I. -I./lib/replace -I./lib/talloc -I./lib/tdb/include -I./libaddns -I./librpc -DHAVE_CONFIG_H -D_LARGEFILE64_SOURCE -D_FILE_OFFSET_BITS=64 -D_GNU_SOURCE -Iinclude -I./include -I. -I. -I./lib/replace -I./lib/talloc -I./lib/tdb/include -I./libaddns -I./librpc -I./popt -DLDAP_DEPRECATED -I/include -I/tmp/buildd/samba-3.2.5/source/lib -D_SAMBA_BUILD_=3 -fPIC -c client/mount.cifs.c -o client/mount.cifs.o
This EX_SYSERR appears in samba-3.0.36-CVE-2009-2948-1.patch...
I suspect this is something that got introduced between 3.2.5 and
3.2.14
....so, yet more investigation to do for all of us.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 198 bytes
Desc: Digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-samba-maint/attachments/20091008/d70da32e/attachment.pgp>
More information about the Pkg-samba-maint
mailing list