[Pkg-samba-maint] [samba] branch master updated (c3dac32 -> f68793e)

Mathieu Parent sathieu at moszumanska.debian.org
Thu Sep 21 07:24:55 UTC 2017


This is an automated email from the git hooks/post-receive script.

sathieu pushed a change to branch master
in repository samba.

      from  c3dac32   Release 2:4.6.7+dfsg-1
       new  2916bb4   Patches for CVE-2017-12150, CVE-2017-12151 and CVE-2017-12163
       new  d1ca5a2   CVE-2017-12150: s3:popt_common: don't turn a guessed username into a specified one
       new  0e0df82   CVE-2017-12150: s3:lib: get_cmdline_auth_info_signing_state smb_encrypt SMB_SIGNING_REQUIRED
       new  55247dc   CVE-2017-12150: s3:pylibsmb: make use of SMB_SIGNING_DEFAULT for 'samba.samba3.libsmb_samba_internal'
       new  2e0e00c   CVE-2017-12150: libgpo: make use of SMB_SIGNING_REQUIRED in gpo_connect_server()
       new  68df4cf   CVE-2017-12150: auth/credentials: cli_credentials_authentication_requested() should check for NTLM_CCACHE/SIGN/SEAL
       new  0d6d9f2   CVE-2017-12150: libcli/smb: add smbXcli_conn_signing_mandatory()
       new  86a6b2f   CVE-2017-12150: s3:libsmb: only fallback to anonymous if authentication was not requested
       new  35f75b4   CVE-2017-12151: s3:libsmb: add cli_state_is_encryption_on() helper function
       new  2868b3e   CVE-2017-12151: s3:libsmb: make use of cli_state_is_encryption_on()
       new  88ab98e   CVE-2017-12163: s3:smbd: Prevent client short SMB1 write from writing server memory to file.
       new  f68793e   Release 2:4.6.7+dfsg-2

The 12 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails.  The revisions
listed as "adds" were already present in the repository and have only
been added to this reference.


Summary of changes:
 auth/credentials/credentials.c                     |  16 +
 debian/changelog                                   |   9 +
 .../CVE-2017-12150-v4-6.patches.metze02.txt        | 381 +++++++++++++++++++++
 .../CVE-2017-12151-v4-6.patches.metze02.txt        | 111 ++++++
 .../patches/CVE-2017-12163-all-metze01.patch.txt   | 141 ++++++++
 debian/patches/series                              |   3 +
 libcli/smb/smbXcli_base.c                          |   5 +
 libcli/smb/smbXcli_base.h                          |   1 +
 libgpo/gpo_fetch.c                                 |   2 +-
 source3/include/auth_info.h                        |   1 +
 source3/lib/popt_common.c                          |   6 +-
 source3/lib/util_cmdline.c                         |  32 ++
 source3/libsmb/clidfs.c                            |  20 +-
 source3/libsmb/clientgen.c                         |  13 +
 source3/libsmb/libsmb_context.c                    |   2 +-
 source3/libsmb/proto.h                             |   1 +
 source3/libsmb/pylibsmb.c                          |   2 +-
 source3/smbd/reply.c                               |  50 +++
 18 files changed, 774 insertions(+), 22 deletions(-)
 create mode 100644 debian/patches/CVE-2017-12150-v4-6.patches.metze02.txt
 create mode 100644 debian/patches/CVE-2017-12151-v4-6.patches.metze02.txt
 create mode 100644 debian/patches/CVE-2017-12163-all-metze01.patch.txt

-- 
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-samba/samba.git




More information about the Pkg-samba-maint mailing list