-
samba (3.0.22-1ubuntu3.14) dapper-security; urgency=low
* SECURITY UPDATE: denial of service via missing range checks on file
descriptors
- debian/patches/security-CVE-2011-0719.patch: validate miscellaneous
file descriptors.
- CVE-2011-0719
-- Marc Deslauriers <email address hidden> Thu, 24 Feb 2011 13:11:08 -0500
-
samba (3.0.22-1ubuntu3.13) dapper-security; urgency=low
* SECURITY UPDATE: denial of service and possible arbitrary code
execution via large number of SID sub authorities
- debian/patches/security-CVE-2010-3069.patch: limit number of SID
sub authorities in source3/lib/util_sid.c, source/libads/ldap.c,
source/libsmb/cliquota.c, source/smbd/nttrans.c.
- CVE-2010-3069
-- Marc Deslauriers <email address hidden> Thu, 09 Sep 2010 11:34:23 -0400
-
samba (3.0.22-1ubuntu3.12) dapper-security; urgency=low
* SECURITY UPDATE: arbitrary remote code execution.
- debian/patches/security-CVE-2010-2063.patch: upstream fixes.
-- Kees Cook <email address hidden> Mon, 14 Jun 2010 17:20:04 -0700
-
samba (3.0.22-1ubuntu3.11) dapper-security; urgency=low
* SECURITY UPDATE: arbitrary file disclosure via wide links
- debian/patches/security-CVE-2010-0926.patch: disable wide links when
UNIX extensions are enabled in source/param/loadparm.c,
source/smbd/service.c, source/smbd/trans2.c, source/smbd/vfs.c,
docs/htmldocs/manpages/smb.conf.5.html, docs/manpages/smb.conf.5.
- CVE-2010-0926
* WARNING: This changes the default samba behaviour. For security
reasons, it is no longer possible to use wide links and UNIX
extensions at the same time. After applying this security update, wide
links will be disabled automatically as UNIX extensions are turned on
by default. If wide links are required, you may re-enable them by
adding "unix extensions = no" to the [global] section of
the /etc/samba/smb.conf configuration file.
-- Marc Deslauriers <email address hidden> Thu, 18 Mar 2010 16:13:15 -0400
-
samba (3.0.22-1ubuntu3.10) dapper-security; urgency=low
* SECURITY UPDATE: privilege escalation via mount.cifs race
- debian/patches/security-CVE-2009-3297.patch: validate mount point and
perform mount in "." to prevent race in source/client/mount.cifs.c.
- CVE-2009-3297
-- Marc Deslauriers <email address hidden> Tue, 26 Jan 2010 13:53:55 -0500
-
samba (3.0.22-1ubuntu3.9) dapper-security; urgency=low
* SECURITY UPDATE: whole filesystem share via user with no home directory
- debian/patches/security-CVE-2009-2813.patch: make sure home directory
is set in source/param/loadparm.c, source/smbd/service.c.
- CVE-2009-2813
* SECURITY UPDATE: credentials file disclosure and unauthorized usage via
setuid mount.cifs
- debian/patches/security-CVE-2009-2948.patch: don't open credentials
file if user doesn't have permission, and don't print password when
using verbose option in source/client/mount.cifs.c.
- CVE-2009-2948
* SECURITY UPDATE: denial of service via unexpected oplock break
notification reply
- debian/patches/security-CVE-2009-2906.patch: track messages already
processed in source/include/smb.h, source/smbd/process.c.
- CVE-2009-2906
-- Marc Deslauriers <email address hidden> Thu, 01 Oct 2009 09:18:15 -0400
-
samba (3.0.22-1ubuntu3.8) dapper-security; urgency=low
* RELIABILITY UPDATE: the patch for CVE-2008-1105 introduced a regression
with certain client and server interactions with large file sizes.
* debian/patches/security-CVE-2008-1105_pt2.patch: adjust cli_negprot()
to properly calculate buffer sizes
* References
LP: #241448
https://bugzilla.samba.org/show_bug.cgi?id=5517
-- Jamie Strandboge <email address hidden> Sat, 28 Jun 2008 09:53:25 -0400
-
samba (3.0.22-1ubuntu3.7) dapper-security; urgency=low
* SECURITY UPDATE: heap overflow when processing crafted SMB responses
* debian/patches/security-CVE-2008-1105.patch: update util_sock.c to require
specifying the buffer size and update client.c, smbctool.c, smbfilter.c,
and process.c for these changes
* SECURITY UPDATE: buffer overrun in nmbd when processing crafted GETDC
mailslot requests
* debian/patches/security_CVE-2007-4572.patch: check return values and
sizeof strings in charcnv.c, ntlmssp_parse.c, nmbd_processlogon.c.
Backport regression fixes from upstream.
* References:
CVE-2008-1105
CVE-2007-4572
LP: #235912
-- Jamie Strandboge <email address hidden> Mon, 16 Jun 2008 14:28:43 -0400
-
samba (3.0.22-1ubuntu3.6) dapper-security; urgency=low
* SECURITY UPDATE: remote code execution via GETDC mailslot request.
* Add security-CVE-2007-6015.patch: thanks to Steve Langasek.
* References
CVE-2007-6015
-- Kees Cook <email address hidden> Fri, 14 Dec 2007 17:30:50 -0800
-
samba (3.0.22-1ubuntu3.5) dapper-security; urgency=low
* removed debian/patches/security_CVE-2007-4572.patch as it
caused regressions. This is believed to be a non-exploitable
DoS, but will provide updated packages when a suitable fix
is found.
* References:
LP #163042
LP #163116
https://bugzilla.samba.org/show_bug.cgi?id=5087
-- Jamie Strandboge <email address hidden> Fri, 16 Nov 2007 12:03:41 -0500
-
samba (3.0.22-1ubuntu3.4) dapper-security; urgency=low
* SECURITY UPDATE: buffer overrun in nmbd when processing crafted GETDC
mailslot requests
* debian/patches/security_CVE-2007-4572.patch: check return values and
sizeof strings in charcnv.c, ntlmssp_parse.c, nmbd_processlogon.c
* SECURITY UPDATE: arbitrary code execution in nmbd when configured as
a WINS server when processing name registration and name query requests
* debian/patches/security_CVE-2007-5398.patch: properly check len in
nmbd_packets.c
* References
CVE-2007-4572
CVE-2007-5398
-- Jamie Strandboge <email address hidden> Wed, 14 Nov 2007 17:13:17 -0500
-
samba (3.0.22-1ubuntu3.3) dapper-security; urgency=low
* SECURITY UPDATE: remote heap overflows, remote command execution.
* security_ndr-heap-overflows.patch: upstream fixes (CVE-2007-2446)
* security_remote-command-execution.patch: upstream fixed (CVE-2007-2447)
-- Kees Cook <email address hidden> Tue, 15 May 2007 15:28:55 -0700
-
samba (3.0.22-1ubuntu3.2) dapper-security; urgency=low
* SECURITY UPDATE: priv escalation via crafted AFS share filenames,
denial of service when renaming a file in deferred open queue.
* Add 'debian/patches/ubuntu-fix-open-loop.patch': fix infinite loop,
taken from upstream patch.
- CVE-2007-0452
* Add 'debian/patches/ubuntu-fix-afsacl.patch': fix format string
overflow, taken from upstrem patch.
- CVE-2007-0454
-- Kees Cook <email address hidden> Mon, 5 Feb 2007 15:58:02 -0800
-
samba (3.0.22-1ubuntu3.1) dapper-security; urgency=low
* SECURITY UPDATE: Remote DoS.
* Add debian/patches/track_connection_dos.patch:
- Limit active connections to 2048 to avoid DoS due to unbound array
growing when tracking active connections.
- CVE-2006-3403
-- Martin Pitt <email address hidden> Tue, 11 Jul 2006 10:12:54 +0000
-
samba (3.0.22-1ubuntu3) dapper; urgency=low
* Config file changes only in this upload; no destabilising code changes.
* Comment out the default [homes] shares and add more verbose comments to
explain what they do and how they work (closes: launchpad.net/27608)
* Add a "valid users = %S" stanza to the commented-out [homes] section, to
show users how to restrict access to \\server\username to only username.
* Change the (commented-out) "printer admin" example to use "@lpadmin"
instead of "@ntadmin", since the lpadmin group is used for spool admin.
-- Adam Conrad <email address hidden> Wed, 17 May 2006 18:29:00 +1000
-
samba (3.0.22-1ubuntu2) dapper; urgency=low
* After much faff about fixing this properly and getting fixes
submitted upstream (some of which has happened), I've concluded
that getting every case_tables usage in the code nailed down
before release just isn't going to happen, so applying a more
global bandaid (ubuntu-setlocale-fixes.patch) instead to stop
the SEGVs completely (closes: launchpad.net/{39990,39484,39956})
* Snag a patch from upstream SVN to stop winbindd from panicking
when not joined to a domain (closes: launchpad.net/32614)
* Mangle patch fuzz for previous patch to make it apply cleanly.
-- Adam Conrad <email address hidden> Tue, 16 May 2006 22:36:17 +1000
-
samba (3.0.22-1ubuntu1) dapper; urgency=low
* Sync with Debian's new upstream (UVF exception granted by mdz) to
resolve the information disclosure vuln reported in CVE-2006-1059
* Make the panic-action script check for 'mail' before it goes about
trying to backtrace crashes and mail to root (launchpad.net/32987)
* Include patch from upstream to purge setlocale calls from the client
library, so we don't break the desktop locale (launchpad.net/28603)
* Make the samba and winbind init scripts more robust in the face of a
tmpfs /var/run, creating directories as we go (launchpad.net/33389)
* Fix up syntax error in the default config file (launchpad.net/37965)
samba (3.0.22-1) unstable; urgency=medium
[ Steve Langasek ]
* New upstream release
- CAN-2006-1059: fixes an information leak in logfiles of systems using
winbind with log level >= 5.
* Fix a typo in the default smb.conf (closes: #354495).
[ Noèl Köthe ]
* replacing SMB with SMB/CIFS in the descriptions like
named on the samba.org webpage. Closes: #356335
-- Adam Conrad <email address hidden> Sun, 2 Apr 2006 22:09:41 +1000
-
samba (3.0.21c-1ubuntu2) dapper; urgency=low
* SECURITY UPDATE: Password leakage.
* Add debian/patches/winbind-cleartext-password.patch:
- Do not expose the machine account credentials in winbind log files.
- Patch taken from stable version 3.0.22.
* References:
CVE-2006-1059
http://us1.samba.org/samba/security/CAN-2006-1059.html
-- Martin Pitt <email address hidden> Tue, 4 Apr 2006 08:47:48 +0000
-
samba (3.0.21c-1ubuntu1) dapper; urgency=low
* Merge with Debian for new upstream bugfixes, UVF exception by mdz.
* Remove dapper->dapper upgrade hack, which should be a non-issue now.
samba (3.0.21c-1) unstable; urgency=low
* New upstream release
* add a few logon-related parameters as good and safe
examples for *DC-type settings. Closes: #349051
* add an example "add user script". Closes: #349050
* drop outdated information from the smbfs package description
Closes: #352828
-- Adam Conrad <email address hidden> Fri, 24 Mar 2006 02:59:17 +1100
-
samba (3.0.21b-1ubuntu2) dapper; urgency=low
* Due to a misplaced file in older samba packages, temporarily make
python2.4-samba Replace samba for smooth dapper->dapper upgrades.
-- Adam Conrad <email address hidden> Thu, 23 Feb 2006 20:33:34 +1100
-
samba (3.0.21b-1ubuntu1) dapper; urgency=low
* Sync with Debian's new upstream release (UVF exception granted by Colin),
which fixes several nasty crashes, as well as a vicious memory leak in
winbind that can OOM a machine within days (Closes: launchpad.net/32440)
* Resolve some fairly scary merge conflicts from Debian's switch to quilt.
* Revert Debian's installation of mount.cifs and umount.cifs as suid until
Martin Pitt and I have had a chance to review/discuss this for Ubuntu.
samba (3.0.21b-1) unstable; urgency=low
* The "Tridge" release: celebrates the 2005 Free Software Award winner
* New upstream release
* Upstream bugs fixed by the new upstream release:
- Support changing expired passwords in
pam_winbindd. Closes: #258302
- vfs_full_audit fixes for multiple connections. Closes: #348419
- crashes of smbd in security=server mode
Closes: #346045, #346069, #350598, #351448
[ Peter Eisentraut ]
* Put correct paths for Debian installations into the man pages, and
remove outdated swat setup instructions therein. Closes: #321005
* Fix lintian overrides and install them into the right packages.
* Remove swat inetd registration in remove, not purge. Closes: #313214
* Add findsmb script. Closes: #231806
* Fix sonames of libnss_win{bind,s}.so. Closes: #333290
* Remove autoconf build dependency.
* Remove remnants of old patch system.
* Install smbumount setgid root. Closes: #253437
* Add watch file.
* Activate kernel oplocks. Closes: #218511
* Disable PIE compilation. Closes: #346416
[ Christian Perrier ]
* activate building of idmap_rid. Closes: #284681.
Thanks to Ubuntu patches
* activate building of idmap_ad. Closes: #341814
* modify the long description of the libsmbclient-dev package to
avoid repeating the long description. Thanks, linda.
[ Steve Langasek ]
* Also enable setresuid()/setresgid() on alpha and sparc now that support
for Linux 2.2 is dropped.
samba (3.0.21a-4) unstable; urgency=low
[ Peter Eisentraut ]
* Add umount.cifs. Closes: #340967
* Really make mount.cifs and umount.cifs suid root. Closes: #340966
[ Christian Perrier ]
* Add "bind interfaces only" and "interfaces" options (commented)
to the default smb.conf file. Closes: #349043
[ Steve Langasek ]
* Add missing changes to source/include/config.h.in into the
autoconf.patch, so that samba looks for files in /var/lib/samba like it's
supposed to instead of in /var/run/samba! Closes: #349372, #349464.
samba (3.0.21a-3) unstable; urgency=low
* Add Build-Depends on quilt (>= 0.40 as we use quilt.make)
samba (3.0.21a-2) unstable; urgency=low
[ Christian Perrier ]
* Switch to quilt for patches management. Refresh all patches so
that they apply cleanly. Closes: #345557
* debian/patches/adapt_machine_creation_script.patch:
- adapt example machine creation script to Debian. Closes: #346234
* winbind.dirs:
- added /var/run/samba. Closes: #347585
[ Peter Eisentraut ]
* swat.links:
- file added. Closes: #346001
[ Noèl Köthe ]
* fixed typo in panic-script. Closes: #348410
[ Steve Langasek ]
* debian/patches/autoconf.patch:
- move changes to autogenerated files into their own patch now that we've
lost the script that was calling autogen.sh for us; this also helps
make debian/rules clean just a little bit cleaner.
* debian/patches/fhs.patch:
- fix new references to registry.tdb (closes: #348874).
- also move account_policy.tdb, perfcount, and eventlog into /var/lib/samba
where they belong
-- Adam Conrad <email address hidden> Thu, 23 Feb 2006 15:23:37 +1100
-
samba (3.0.21a-1ubuntu1) dapper; urgency=low
* Resyncronise with Debian, resolving many merge conflicts (#20710)
* Alter the panic-action script to encourage users to report their
bugs in Ubuntu packages to Ubuntu, rather than reporting to Debian.
* Munge our init script to deal with the fact that our implementation
(or lack thereof) of log_daemon_msg and log_progress_msg differs
from Debian's implementation of the same (Ubuntu #19691)
* Enable the idmap_rid.so backend plugin for winbind (Ubuntu #12797)
-- Adam Conrad <email address hidden> Tue, 3 Jan 2006 13:56:26 +1000
-
samba (3.0.20b-2ubuntu1) dapper; urgency=low
* Resynchronise with Debian.
-- Michael Vogt <email address hidden> Mon, 14 Nov 2005 11:11:28 +0100
