[Pkg-samba-maint] HEADS UP: CVE-2017-11103: Orpheus' Lyre KDC-REP service name validation
Andrew Bartlett
abartlet at samba.org
Thu Jul 13 07:47:17 UTC 2017
On Thu, 2017-07-13 at 17:02 +1200, Andrew Bartlett wrote:
> On Thu, 2017-07-13 at 13:08 +1200, Andrew Bartlett wrote:
> > On Wed, 2017-07-12 at 15:29 +1200, Andrew Bartlett wrote:
> > > Just a heads-up that a Samba security release is likely to land,
> > > without embargo, very soon.
> > >
> > > https://bugzilla.samba.org/show_bug.cgi?id=12894
> > >
> > > Andrew Bartlett
> >
> > Now that all the upstream work is done, is there anything I can help
> > with on this on the Debian end?
>
> I'm sure someone else has started, but just in case I've built packages
> for jessie and streach.
>
> Most of the time was spent remembering how to add patches (both in the
> tree and in the debian/patches) and how to run:
>
> gbp buildpackage --git-pbuilder --git-dist=stretch
>
> :-)
>
> When I eventually find my way to sid I'll get some of this magic into a
> doc, or find where it is documented.
>
> The git sources are in jessie and stretch at:
>
> git://git.samba.org/abartlet/samba-debian.git
>
> I've only built them, not tested them. Then again, the upstream
> patches were not manually tested either (we relied on autobuild), such
> was the rush...
>
> I can upload the built packages somewhere if that is useful.
These and the debdiff against a build directly from the git tree are
(or will be shortly) at
https://seafile.catalyst.net.nz/d/8f9c648216c3452497cb/
I hope this is of some assistance.
Thanks,
Andrew Bartlett
--
Andrew Bartlett http://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
Samba Developer, Catalyst IT http://catalyst.net.nz/services/samba
More information about the Pkg-samba-maint
mailing list