[Pkg-samba-maint] samba_4.18.1+dfsg-1~exp1_source.changes ACCEPTED into experimental
Debian FTP Masters
ftpmaster at ftp-master.debian.org
Wed Mar 29 18:09:04 BST 2023
Thank you for your contribution to Debian.
Accepted:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Wed, 29 Mar 2023 17:59:17 +0300
Source: samba
Architecture: source
Version: 2:4.18.1+dfsg-1~exp1
Distribution: experimental
Urgency: high
Maintainer: Debian Samba Maintainers <pkg-samba-maint at lists.alioth.debian.org>
Changed-By: Michael Tokarev <mjt at tls.msk.ru>
Changes:
samba (2:4.18.1+dfsg-1~exp1) experimental; urgency=high
.
* upstream stable/security/bugfix release, fixing the following issues:
o CVE-2023-0225: An incomplete access check on dnsHostName allows
authenticated but otherwise unprivileged users to delete this
attribute from any object in the directory.
https://www.samba.org/samba/security/CVE-2023-0225.html
o CVE-2023-0922: The Samba AD DC administration tool, when operating
against a remote LDAP server, will by default send new or reset
passwords over a signed-only connection.
https://www.samba.org/samba/security/CVE-2023-0922.html
o CVE-2023-0614: Fix in 4.6.16, 4.7.9, 4.8.4 and 4.9.7 for CVE-2018-10919
Confidential attribute disclosure via LDAP filters was insufficient and
an attacker may be able to obtain confidential BitLocker recovery keys
from a Samba AD DC. Installations with such secrets in their Samba AD
should assume they have been obtained and need replacing.
https://www.samba.org/samba/security/CVE-2023-0614.html
Closes: CVE-2023-0225 CVE-2023-0922 CVE-2023-0614
* update libldb symbols and versions
Checksums-Sha1:
b8aad0eaa651d3c47417d71f55bd03ecbd0e54eb 4418 samba_4.18.1+dfsg-1~exp1.dsc
6a7c1726fd868f04219388b20f0dd1308a21c354 24609372 samba_4.18.1+dfsg.orig.tar.xz
f531400f274039b2efd692677c777e13baeb7807 269596 samba_4.18.1+dfsg-1~exp1.debian.tar.xz
d21dd57e8084147101c09136ea6cd5b9d8dc478a 5979 samba_4.18.1+dfsg-1~exp1_source.buildinfo
Checksums-Sha256:
5cbd70153db1a498eeae609bb305fe4f6314c8e9f0aa1f295aa4de313efbf744 4418 samba_4.18.1+dfsg-1~exp1.dsc
cc856d6f07a1bbe428994b429a1ff9e5beebfd4f6717481084e3b19b79f4fd5e 24609372 samba_4.18.1+dfsg.orig.tar.xz
239b15e9e46ae1f6d326f3da2a266cc26fa71cb32614ca8d02e8fa00a0c5375d 269596 samba_4.18.1+dfsg-1~exp1.debian.tar.xz
d84b5997368303581e2fcd861ab46b324b0cd34403dfb168acc70ed1ee8e4bd2 5979 samba_4.18.1+dfsg-1~exp1_source.buildinfo
Files:
34028e4a7412a834d9ef904f7f2da683 4418 net optional samba_4.18.1+dfsg-1~exp1.dsc
271645a5abe9d8e7855cffb157eaaf2c 24609372 net optional samba_4.18.1+dfsg.orig.tar.xz
d5ea21f20e752aa29022cb2985bb3b20 269596 net optional samba_4.18.1+dfsg-1~exp1.debian.tar.xz
a4e455bb1a1d66d99d2e344ebdb1deff 5979 net optional samba_4.18.1+dfsg-1~exp1_source.buildinfo
-----BEGIN PGP SIGNATURE-----
iQFDBAEBCgAtFiEEe3O61ovnosKJMUsicBtPaxppPlkFAmQkaSQPHG1qdEB0bHMu
bXNrLnJ1AAoJEHAbT2saaT5ZNhcH/A8arvpVPRX3k2lw1JcNcwoHtXenld+WA+Ti
mSYnpr14agzg3KfXJQb4J1Tj1ptbGS+xLrrxB9B9SD9sPK6d/1vH2QKv58hBDNMm
dpP9DvQSbtPD4NGYvATx7hvdJhQndmS/7YmJaoBjU2pilGbtnVYMR4IJVJaNjz1K
iZAzt01HINUApWUQpCudAxxyddCnlakC+N/lstWd5oKQbzDafhH1miZ4cA+lo499
Fj70DxzTPH76xo2YMfeo4CEf9yyb7ihHe/KunoWW6BWIrVZVQxNGvlUyfGmvpi9d
2Q8j0ENMMFNcnND+/a45BVIDTvMf8lv+MSfrIY/RZsvZQvuxBiQ=
=joJs
-----END PGP SIGNATURE-----
More information about the Pkg-samba-maint
mailing list