[Pkg-samba-maint] HEADS UP: CVE-2017-11103: Orpheus' Lyre KDC-REP service name validation

Andrew Bartlett abartlet at samba.org
Thu Jul 13 05:02:18 UTC 2017

On Thu, 2017-07-13 at 13:08 +1200, Andrew Bartlett wrote:
> On Wed, 2017-07-12 at 15:29 +1200, Andrew Bartlett wrote:
> > Just a heads-up that a Samba security release is likely to land,
> > without embargo, very soon.
> > 
> > https://bugzilla.samba.org/show_bug.cgi?id=12894
> > 
> > Andrew Bartlett
> Now that all the upstream work is done, is there anything I can help
> with on this on the Debian end?

I'm sure someone else has started, but just in case I've built packages
for jessie and streach.

Most of the time was spent remembering how to add patches (both in the
tree and in the debian/patches) and how to run:

gbp buildpackage --git-pbuilder --git-dist=stretch


When I eventually find my way to sid I'll get some of this magic into a
doc, or find where it is documented. 

The git sources are in jessie and stretch at:


I've only built them, not tested them.  Then again, the upstream
patches were not manually tested either (we relied on autobuild), such
was the rush...

I can upload the built packages somewhere if that is useful.

I hope this is of some assistance.

Andrew Bartlett

Andrew Bartlett                       http://samba.org/~abartlet/
Authentication Developer, Samba Team  http://samba.org
Samba Developer, Catalyst IT          http://catalyst.net.nz/services/samba

More information about the Pkg-samba-maint mailing list