[Pkg-samba-maint] bookworm-security: package samba/2:4.17.10+dfsg-0+deb12u1
Moritz Muehlenhoff
jmm at inutil.org
Wed Jul 19 18:14:05 BST 2023
On Wed, Jul 19, 2023 at 06:27:45PM +0300, Michael Tokarev wrote:
> Hi! Here's the updated samba package for bookworm-security, released by
> the samba team today.
>
> It fixes several security issues, some of them might be serious enough.
> From the WHATSNEW.txt file (also available on samba.org):
Most of them look harmless, but I guess we can do a DSA based on CVE-2022-2127.
I'll have a closer look later.
What about oldstable/Bullseye? Apart of the new round of issues, there's also
various issues open. It also misses the bugfix which was fixed in
https://lists.debian.org/debian-stable-announce/2023/07/msg00000.html, right?
4.13 is long EOL, can we still backport these reliably?
Given that 4.13 is long EOL and a supported 4.18 release it out, we could e.g. tell
people using Active Directoy/domain controller functionality to upgrade to
Bookworm and selectively only backport fixes which support the file/print server
as domain member use case?
Cheers,
Moritz
More information about the Pkg-samba-maint
mailing list