[Pkg-samba-maint] [samba] branch master updated (c3dac32 -> f68793e)
Mathieu Parent
sathieu at moszumanska.debian.org
Thu Sep 21 07:24:55 UTC 2017
This is an automated email from the git hooks/post-receive script.
sathieu pushed a change to branch master
in repository samba.
from c3dac32 Release 2:4.6.7+dfsg-1
new 2916bb4 Patches for CVE-2017-12150, CVE-2017-12151 and CVE-2017-12163
new d1ca5a2 CVE-2017-12150: s3:popt_common: don't turn a guessed username into a specified one
new 0e0df82 CVE-2017-12150: s3:lib: get_cmdline_auth_info_signing_state smb_encrypt SMB_SIGNING_REQUIRED
new 55247dc CVE-2017-12150: s3:pylibsmb: make use of SMB_SIGNING_DEFAULT for 'samba.samba3.libsmb_samba_internal'
new 2e0e00c CVE-2017-12150: libgpo: make use of SMB_SIGNING_REQUIRED in gpo_connect_server()
new 68df4cf CVE-2017-12150: auth/credentials: cli_credentials_authentication_requested() should check for NTLM_CCACHE/SIGN/SEAL
new 0d6d9f2 CVE-2017-12150: libcli/smb: add smbXcli_conn_signing_mandatory()
new 86a6b2f CVE-2017-12150: s3:libsmb: only fallback to anonymous if authentication was not requested
new 35f75b4 CVE-2017-12151: s3:libsmb: add cli_state_is_encryption_on() helper function
new 2868b3e CVE-2017-12151: s3:libsmb: make use of cli_state_is_encryption_on()
new 88ab98e CVE-2017-12163: s3:smbd: Prevent client short SMB1 write from writing server memory to file.
new f68793e Release 2:4.6.7+dfsg-2
The 12 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails. The revisions
listed as "adds" were already present in the repository and have only
been added to this reference.
Summary of changes:
auth/credentials/credentials.c | 16 +
debian/changelog | 9 +
.../CVE-2017-12150-v4-6.patches.metze02.txt | 381 +++++++++++++++++++++
.../CVE-2017-12151-v4-6.patches.metze02.txt | 111 ++++++
.../patches/CVE-2017-12163-all-metze01.patch.txt | 141 ++++++++
debian/patches/series | 3 +
libcli/smb/smbXcli_base.c | 5 +
libcli/smb/smbXcli_base.h | 1 +
libgpo/gpo_fetch.c | 2 +-
source3/include/auth_info.h | 1 +
source3/lib/popt_common.c | 6 +-
source3/lib/util_cmdline.c | 32 ++
source3/libsmb/clidfs.c | 20 +-
source3/libsmb/clientgen.c | 13 +
source3/libsmb/libsmb_context.c | 2 +-
source3/libsmb/proto.h | 1 +
source3/libsmb/pylibsmb.c | 2 +-
source3/smbd/reply.c | 50 +++
18 files changed, 774 insertions(+), 22 deletions(-)
create mode 100644 debian/patches/CVE-2017-12150-v4-6.patches.metze02.txt
create mode 100644 debian/patches/CVE-2017-12151-v4-6.patches.metze02.txt
create mode 100644 debian/patches/CVE-2017-12163-all-metze01.patch.txt
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-samba/samba.git
More information about the Pkg-samba-maint
mailing list