[Pkg-samba-maint] [Git][samba-team/samba][bullseye-security] Import Debian changes 2:4.13.13+dfsg-1~deb11u2

Salvatore Bonaccorso (@carnil) gitlab at salsa.debian.org
Tue Feb 1 23:04:50 GMT 2022



Salvatore Bonaccorso pushed to branch bullseye-security at Debian Samba Team / samba


Commits:
0dd5ef76 by Mathieu Parent at 2022-02-02T00:00:23+01:00
Import Debian changes 2:4.13.13+dfsg-1~deb11u2

samba (2:4.13.13+dfsg-1~deb11u2) bullseye-security; urgency=high
..
  * This is a security release in order to address the following defects:
    - CVE-2016-2124: don't fallback to non spnego authentication if we require
      kerberos
    - MS CVE-2020-17049 in Samba: 'Bronze bit' S4U2Proxy Constrained Delegation
      bypass
    - CVE-2020-25717: A user on the domain can become root on domain members
    - CVE-2020-25718: An RODC can issue (forge) administrator tickets to other
      servers
      + Bump build-depends ldb >= 2.2.3
    - CVE-2020-25719: AD DC Username based races when no PAC is given
    - CVE-2020-25721: Kerberos acceptors need easy access to stable AD
      identifiers (eg objectSid)
    - CVE-2020-25722: AD DC UPN vs samAccountName not checked (top-level bug
      for AD DC validation issues)
    - CVE-2021-3738: crash in dsdb stack
    - CVE-2021-23192: dcerpc requests don't check all fragments against the
      first auth_state
      + Update d/samba-libs.install for libdcerpc-pkt-auth.so.0

- - - - -


30 changed files:

- VERSION
- buildtools/wafsamba/samba_utils.py
- buildtools/wafsamba/wafsamba.py
- ctdb/config/ctdb.conf
- ctdb/config/events/legacy/06.nfs.script
- ctdb/config/events/legacy/60.nfs.script
- ctdb/config/nfs-linux-kernel-callout
- ctdb/config/statd-callout
- debian/changelog
- debian/control
- + debian/patches/0100-CVE-2020-25718-ldb-attrib_handler-casefold-simplify-.patch
- + debian/patches/0101-CVE-2020-25718-ldb_match-trailing-chunk-must-match-e.patch
- + debian/patches/0102-CVE-2020-25718-ldb-fix-ldb_comparison_fold-off-by-on.patch
- + debian/patches/0103-CVE-2020-25718-pyldb-catch-potential-overflow-error-.patch
- + debian/patches/0104-CVE-2020-25718-ldb_match-remove-redundant-check.patch
- + debian/patches/0105-CVE-2020-25718-pyldb-Fix-Message.items-for-a-message.patch
- + debian/patches/0106-CVE-2020-25718-lib-ldb-Add-missing-break-in-switch-s.patch
- + debian/patches/0107-CVE-2020-25718-ldb.h-remove-undefined-async_ctx-func.patch
- + debian/patches/0108-CVE-2020-25718-ldb-correct-comments-in-attrib_hander.patch
- + debian/patches/0109-CVE-2020-25718-ldb-improve-comments-for-ldb_module_c.patch
- + debian/patches/0110-CVE-2020-25718-pyldb-fix-a-typo.patch
- + debian/patches/0111-CVE-2020-25718-lib-ldb-Use-C99-initializers-for-buil.patch
- + debian/patches/0112-CVE-2020-25718-lib-ldb-samba-Improve-calculate_popt_.patch
- + debian/patches/0113-CVE-2020-25718-ldb_controls-control_to_string-avoids.patch
- + debian/patches/0114-CVE-2020-25718-lib-Add-hex_byte-to-replace.h.patch
- + debian/patches/0115-CVE-2020-25718-ldb-Use-hex_byte-in-ldb_binary_decode.patch
- + debian/patches/0116-CVE-2020-25718-ldb_kv_index-fix-empty-initializer-co.patch
- + debian/patches/0117-CVE-2020-25718-ldb-version-2.2.3.patch
- + debian/patches/0118-CVE-2020-25717-winbind.idl-rename-wbint_TransID.type.patch
- + debian/patches/0119-CVE-2020-25717-s3-passdb-use-ID_TYPE_-instead-of-WBC.patch


The diff was not included because it is too large.


View it on GitLab: https://salsa.debian.org/samba-team/samba/-/commit/0dd5ef76c61a3d66c1f2dc71e81aa44c9af628d6

-- 
View it on GitLab: https://salsa.debian.org/samba-team/samba/-/commit/0dd5ef76c61a3d66c1f2dc71e81aa44c9af628d6
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/pkg-samba-maint/attachments/20220201/43318c23/attachment.htm>


More information about the Pkg-samba-maint mailing list