[Pkg-samba-maint] [samba] annotated tag debian/2%4.2.14+dfsg-0+deb8u9 created (now ecebfa3)

Mathieu Parent sathieu at moszumanska.debian.org
Tue Nov 21 09:50:08 UTC 2017 

This is an automated email from the git hooks/post-receive script.

sathieu pushed a change to annotated tag debian/2%4.2.14+dfsg-0+deb8u9
in repository samba.

        at  ecebfa3   (tag)
   tagging  c347ecf95a994975d1e84a91c9305c34fa80d842 (commit)
  replaces  debian/2%4.2.14+dfsg-0+deb8u6
 tagged by  Mathieu Parent
        on  Tue Nov 21 10:49:59 2017 +0100

- Log -----------------------------------------------------------------
samba Debian release 2:4.2.14+dfsg-0+deb8u9

Jeffrey Altman (1):
      CVE-2017-11103: Orpheus' Lyre KDC-REP service name validation

Jeremy Allison (3):
      CVE-2017-12163: s3:smbd: Prevent client short SMB1 write from writing server memory to file.
      s3: smbd: Chain code can return uninitialized memory when talloc buffer is grown.
      s3: smbd: Fix SMB1 use-after-free crash bug. CVE-2017-14746

Mathieu Parent (6):
      Patch for "CVE-2017-11103: Orpheus' Lyre KDC-REP service name validation" (Closes: #868209)
      Release 2:4.2.14+dfsg-0+deb8u7
      Patches for CVE-2017-12150, CVE-2017-12151 and CVE-2017-12163
      Release 2:4.2.14+dfsg-0+deb8u8
      Patches for CVE-2017-15275 and CVE-2017-14746
      Release 2:4.2.14+dfsg-0+deb8u9

Stefan Metzmacher (8):
      CVE-2017-12150: s3:lib: get_cmdline_auth_info_signing_state smb_encrypt SMB_SIGNING_REQUIRED
      CVE-2017-12150: s3:pylibsmb: make use of SMB_SIGNING_DEFAULT for 'samba.samba3.libsmb_samba_internal'
      CVE-2017-12150: libgpo: make use of SMB_SIGNING_REQUIRED in gpo_connect_server()
      CVE-2017-12150: auth/credentials: cli_credentials_authentication_requested() should check for NTLM_CCACHE/SIGN/SEAL
      CVE-2017-12150: libcli/smb: add smbXcli_conn_signing_mandatory()
      CVE-2017-12150: s3:libsmb: only fallback to anonymous if authentication was not requested
      CVE-2017-12151: s3:libsmb: add cli_state_is_encryption_on() helper function
      CVE-2017-12151: s3:libsmb: make use of cli_state_is_encryption_on()

-----------------------------------------------------------------------

This annotated tag includes the following new commits:

       new  3c87f65   s3: smbd: Chain code can return uninitialized memory when talloc buffer is grown.
       new  7352278   s3: smbd: Fix SMB1 use-after-free crash bug. CVE-2017-14746
       new  a49e7f0   Patches for CVE-2017-15275 and CVE-2017-14746
       new  c347ecf   Release 2:4.2.14+dfsg-0+deb8u9

The 4 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails.  The revisions
listed as "adds" were already present in the repository and have only
been added to this reference.


-- 
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-samba/samba.git

More information about the Pkg-samba-maint mailing list