[Pkg-samba-maint] [samba] 03/08: SECURITY: Samba 4.4.1 release

Andrew Bartlett abartlet-guest at moszumanska.debian.org
Tue Apr 12 22:03:52 UTC 2016


This is an automated email from the git hooks/post-receive script.

abartlet-guest pushed a commit to branch experimental
in repository samba.

commit 2e1014da0dc2793f64ed65799f5667bd41004d25
Author: Andrew Bartlett <abartlet at samba.org>
Date:   Wed Apr 6 17:52:30 2016 +1200

    SECURITY: Samba 4.4.1 release
---
 debian/changelog | 15 +++++++++++++++
 1 file changed, 15 insertions(+)

diff --git a/debian/changelog b/debian/changelog
index b8ef156..a4a0a2a 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,18 @@
+samba (2:4.4.1+dfsg-1) UNRELEASED; urgency=medium
+
+  * New upstream release
+   + Fixes:
+    - CVE-2015-5370 (Multiple errors in DCE-RPC code)
+    - CVE-2016-2110 (Man in the middle attacks possible with NTLMSSP)
+    - CVE-2016-2111 (NETLOGON Spoofing Vulnerability)
+    - CVE-2016-2112 (LDAP client and server don't enforce integrity)
+    - CVE-2016-2113 (Missing TLS certificate validation)
+    - CVE-2016-2114 ("server signing = mandatory" not enforced)
+    - CVE-2016-2115 (SMB IPC traffic is not integrity protected)
+    - CVE-2016-2118 (SAMR and LSA man in the middle attacks possible)
+
+ -- Andrew Bartlett <abartlet+debian at catalyst.net.nz>  Wed, 06 Apr 2016 17:51:36 +1200
+
 samba (2:4.4.0+dfsg-1) experimental; urgency=medium
   [ Andrew Bartlett ]
   * New upstream release.

-- 
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-samba/samba.git




More information about the Pkg-samba-maint mailing list