[Pkg-samba-maint] [samba] branch jessie updated (43bc5be -> 03952a4)

Mathieu Parent sathieu at moszumanska.debian.org
Thu Mar 23 19:20:18 UTC 2017

This is an automated email from the git hooks/post-receive script.

sathieu pushed a change to branch jessie
in repository samba.

      from  43bc5be   Release 2:4.2.14+dfsg-0+deb8u2
       new  5ef5ea9   s3: vfs: dirsort doesn't handle opendir of "." correctly.
       new  962660e   s3: smbd: Correctly canonicalize any incoming shadow copy path.
       new  7ed67a7   s3: lib: Add canonicalize_absolute_path().
       new  d03a7d0   s3: smbd: Make set_conn_connectpath() call canonicalize_absolute_path().
       new  636e157   s3: VFS: shadow_copy2: Correctly initialize timestamp and stripped variables.
       new  48fc0e4   s3: VFS: shadow_copy2: Ensure pathnames for parameters are correctly relative and terminated.
       new  4985dd7   s3: VFS: shadow_copy2: Fix length comparison to ensure we don't overstep a length.
       new  4a965a3   s3: VFS: shadow_copy2: Add two new variables to the config data. Not yet used.
       new  c9c8957   s3: VFS: shadow_copy2: Add a wrapper function to call the original shadow_copy2_strip_snapshot().
       new  b04e28f   s3: VFS: shadow_copy2: Change a parameter name.
       new  7c298de   s3: VFS: shadow_copy2: Add two currently unused functions to make pathnames absolute or relative to $cwd.
       new  9bc1cff   s3: VFS: shadow_copy2: Fix chdir to store off the needed private variables.
       new  62887c2   vfs_shadow_copy2: add shadow_copy2_do_convert()
       new  b8aca2b   vfs_shadow_copy2: fix case where snapshots are outside the share
       new  d12641c   s3: VFS: Allow shadow_copy2_connectpath() to return the cached path derived from $cwd.
       new  10352f9   s3: VFS: Ensure shadow:format cannot contain a / path separator.
       new  7593a68   s3: VFS: Add utility function check_for_converted_path().
       new  4f88c85   s3: VFS: shadow_copy2: Fix module to work with variable current working directory.
       new  85ce658   s3: VFS: shadow_copy2: Fix a memory leak in the connectpath function.
       new  2e7cc6e   s3: VFS: shadow_copy2: Fix usage of saved_errno to only set errno on error.
       new  0efb93f   s3: VFS: Don't allow symlink, link or rename on already converted paths.
       new  b3e3af8   s3: VFS: vfs_streams_xattr.c: Make streams_xattr_open() store the same path as streams_xattr_recheck().
       new  c5092e6   vfs_streams_xattr: use fsp, not base_fsp
       new  9bcb5c5   s3: vfs: streams_depot. Use conn->connectpath not conn->cwd.
       new  6165363   s3: smbd: Create wrapper function for OpenDir in preparation for making robust.
       new  ca337a5   s3: smbd: Opendir_internal() early return if SMB_VFS_OPENDIR failed.
       new  b84a808   s3: smbd: Create and use open_dir_safely(). Use from OpenDir().
       new  9b02d06   s3: smbd: OpenDir_fsp() use early returns.
       new  d5a3c3c   s3: smbd: OpenDir_fsp() - Fix memory leak on error.
       new  c244ebd   s3: smbd: Move the reference counting and destructor setup to just before retuning success.
       new  3d10f38   s3: smbd: Correctly fallback to open_dir_safely if FDOPENDIR not supported on system.
       new  9db66a1   s3: smbd: Remove O_NOFOLLOW guards. We insist on O_NOFOLLOW existing.
       new  6a4298e   s3: smbd: Move special handling of symlink errno's into a utility function.
       new  c84d5b6   s3: smbd: Add the core functions to prevent symlink open races.
       new  a3bb627   s3: smbd: Use the new non_widelink_open() function.
       new  fcdab6a   Patch for CVE-2017-2619
       new  adebe18   Release 2:4.2.14+dfsg-0+deb8u3
       new  00a6f83   CVE-2017-2619: s3/smbd: re-open directory after dptr_CloseDir()
       new  4b6d188   CVE-2017-2619: s4/torture: add SMB2_FIND tests with SMB2_CONTINUE_FLAG_REOPEN flag
       new  03952a4   Release 2:4.2.14+dfsg-0+deb8u4

The 40 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails.  The revisions
listed as "adds" were already present in the repository and have only
been added to this reference.

Summary of changes:
 debian/changelog                    |   67 +
 debian/patches/CVE-2017-2619.patch  | 4222 +++++++++++++++++++++++++++++++++++
 debian/patches/series               |    1 +
 source3/include/proto.h             |    1 +
 source3/lib/util.c                  |  139 ++
 source3/modules/vfs_dirsort.c       |    4 +
 source3/modules/vfs_shadow_copy2.c  | 1005 ++++++---
 source3/modules/vfs_streams_depot.c |    3 +-
 source3/modules/vfs_streams_xattr.c |   50 +-
 source3/smbd/dir.c                  |  148 +-
 source3/smbd/filename.c             |  150 ++
 source3/smbd/open.c                 |  309 ++-
 source3/smbd/service.c              |  102 +-
 source3/smbd/smb2_find.c            |   17 +
 source4/torture/smb2/dir.c          |   12 +-
 15 files changed, 5769 insertions(+), 461 deletions(-)
 create mode 100644 debian/patches/CVE-2017-2619.patch

Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-samba/samba.git

More information about the Pkg-samba-maint mailing list