[Pkg-samba-maint] [samba] 05/13: Import upstream security release 4.0.11

Ivo De Decker idd-guest at moszumanska.debian.org
Sat Nov 23 07:09:49 UTC 2013


This is an automated email from the git hooks/post-receive script.

idd-guest pushed a commit to branch master
in repository samba.

commit 8d1b934b773aded19cf89febd02dd33231b19151
Author: Ivo De Decker <ivo.dedecker at ugent.be>
Date:   Mon Nov 11 13:21:23 2013 +0100

    Import upstream security release 4.0.11
    
    Fixes CVE-2013-4475 and CVE-2013-4476
---
 debian/changelog | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/debian/changelog b/debian/changelog
index 6af2dc1..ee97fc4 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,5 +1,9 @@
-samba (2:4.0.10+dfsg-5) UNRELEASED; urgency=low
+samba (2:4.0.11+dfsg-1) UNRELEASED; urgency=high
 
+  * New upstream security release. Fixes:
+    - CVE-2013-4475: ACLs are not checked on opening an alternate data stream
+                     on a file or directory
+    - CVE-2013-4476: Private key in key.pem world readable
   * Update samba-libs.lintian-overrides for moved libtorture0.
 
  -- Ivo De Decker <ivo.dedecker at ugent.be>  Sat, 02 Nov 2013 11:51:28 +0100

-- 
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-samba/samba.git




More information about the Pkg-samba-maint mailing list