[Pkg-samba-maint] [Git][samba-team/samba][experimental] 5 commits: mention closing of CVE-2022-32743 by the 4.17.0 upload

Michael Tokarev (@mjt) gitlab at salsa.debian.org
Sat Oct 8 21:04:58 BST 2022



Michael Tokarev pushed to branch experimental at Debian Samba Team / samba


Commits:
e55ff561 by Michael Tokarev at 2022-09-14T09:55:40+03:00
mention closing of CVE-2022-32743 by the 4.17.0 upload

- - - - -
5ac81106 by Michael Tokarev at 2022-09-14T09:56:50+03:00
mention closing of CVE-2022-1615 by the 4.17.0 upload

- - - - -
58f20f0c by Michael Tokarev at 2022-10-08T23:03:02+03:00
move libpac-samba4.so.0 from samba to samba-libs (#1021450)

- - - - -
cb9c18f8 by Michael Tokarev at 2022-10-08T23:03:02+03:00
d/rules: verify that samba-libs does not depend on samba

- - - - -
e06421c4 by Michael Tokarev at 2022-10-08T23:03:02+03:00
update changelog; upload 4.17.0+dfsg-2 to experimental

- - - - -


5 changed files:

- debian/changelog
- debian/control
- debian/rules
- debian/samba-libs.install
- debian/samba.install


Changes:

=====================================
debian/changelog
=====================================
@@ -1,6 +1,17 @@
+samba (2:4.17.0+dfsg-2) experimental; urgency=medium
+
+  * mention closing of CVE-2022-32743 by the 4.17.0 upload
+  * mention closing of CVE-2022-1615 by the 4.17.0 upload
+  * move libpac-samba4.so.0 from samba to samba-libs (Closes: #1021450)
+  * d/rules: verify that samba-libs does not depend on samba
+
+ -- Michael Tokarev <mjt at tls.msk.ru>  Sat, 08 Oct 2022 23:00:05 +0300
+
 samba (2:4.17.0+dfsg-1) experimental; urgency=medium
 
   * new upstream release 4.17.0
+    Closes: CVE-2022-1615
+    Closes: CVE-2022-32743
   * removed: spelling.patch (partially applied upstream)
   * removed: weak-crypto-allowed-clarify.diff (applied upstream)
   * refresh: ctdb-create-piddir.patch


=====================================
debian/control
=====================================
@@ -133,11 +133,11 @@ Depends: ${misc:Depends}, ${shlibs:Depends}
 Replaces:
 # libsamba-util.so &deps moved from libwbclient0 to samba-libs in 4.16.1+dfsg-7
  libwbclient0 (<< 2:4.16.1+dfsg-7~),
-# libRPC-WORKER-samba4.so & libREG-FULL-samba4.so moved from samba to samba-libs in 4.16.2+dfsg-1
- samba (<< 2:4.16.2+dfsg-1~),
+# libpac-samba4.so.0 moved from samba to samba-libs in 4.17.0+dfsg-2
+ samba (<< 2:4.17.0+dfsg-2~),
 Breaks: sssd-ad-common (<< 2.3.0),
  libwbclient0 (<< 2:4.16.1+dfsg-7~),
- samba (<< 2:4.16.2+dfsg-1~),
+ samba (<< 2:4.17.0+dfsg-2~),
 Description: Samba core libraries
  Samba is an implementation of the SMB/CIFS protocol for Unix systems,
  providing support for cross-platform file sharing with Microsoft Windows, OS X,


=====================================
debian/rules
=====================================
@@ -300,6 +300,9 @@ ifneq (,$(filter samba-vfs-modules,${build_packages}))
 	    $(if ${WITH_GLUSTERFS}, debian/samba-vfs-modules/usr/lib/*/samba/vfs/glusterfs.so)
 endif
 # after shlibdeps run, check that we don't have wrong depdendencies
+	# samba-libs should not depend on samba (!)
+	if egrep "^shlibs.Depends=.* samba " debian/samba-libs.substvars; \
+	then echo "E: samba-libs should not depend on samba" >&2; exit 1; fi
 	# libldb2 should not depend on samba-libs
 	# (also see debian/patches/use-bzero-instead-of-memset_s.diff)
 	if egrep "^shlibs.Depends=.* (samba-libs|samba) " debian/libldb2.substvars; \


=====================================
debian/samba-libs.install
=====================================
@@ -88,6 +88,7 @@ usr/lib/*/samba/libndr-samba4.so.0
 usr/lib/*/samba/libnet-keytab-samba4.so.0
 usr/lib/*/samba/libnetif-samba4.so.0
 usr/lib/*/samba/libnpa-tstream-samba4.so.0
+usr/lib/*/samba/libpac-samba4.so.0
 usr/lib/*/samba/libposix-eadb-samba4.so.0
 usr/lib/*/samba/libprinting-migrate-samba4.so.0
 usr/lib/*/samba/libprocess-model-samba4.so.0


=====================================
debian/samba.install
=====================================
@@ -16,7 +16,6 @@ usr/lib/*/samba/libgss-preauth-samba4.so.0
 usr/lib/*/samba/libhdb-samba4.so.0
 usr/lib/*/samba/libkdc-samba4.so.0
 usr/lib/*/samba/libmscat-samba4.so.0
-usr/lib/*/samba/libpac-samba4.so.0
 usr/libexec/samba/samba-bgqd
 usr/lib/*/samba/service/*.so
 usr/sbin/eventlogadm



View it on GitLab: https://salsa.debian.org/samba-team/samba/-/compare/0184425785115892e65643893604fc5c4bbcf388...e06421c4ea6d682d32c825a78c845d87ffbf7c31

-- 
View it on GitLab: https://salsa.debian.org/samba-team/samba/-/compare/0184425785115892e65643893604fc5c4bbcf388...e06421c4ea6d682d32c825a78c845d87ffbf7c31
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/pkg-samba-maint/attachments/20221008/b5752478/attachment-0001.htm>


More information about the Pkg-samba-maint mailing list