-
samba (2:3.5.8~dfsg-1ubuntu2.5) natty-security; urgency=low
* SECURITY UPDATE: Authenticated user can take ownership of arbitrary files
and directories
- debian/patches/CVE-2012-2111.patch: Remove excessive permissions granted
in account related Local Security Authority remote procedure calls.
Based on upstream patch.
- CVE-2012-2111
-- Tyler Hicks <email address hidden> Tue, 24 Apr 2012 15:49:30 -0500
-
samba (2:3.5.8~dfsg-1ubuntu2.4) natty-security; urgency=low
* SECURITY UPDATE: Unauthenticated remote code execution via
RPC calls (LP: #978458)
- debian/patches/CVE-2012-1182-1.patch: Fix PIDL compiler to generate code
that uses the same value for array allocation and array length checks.
Based on upstream patch.
- debian/patches/CVE-2012-1182-2.patch: Regenerate PIDL generated files with
the patched PIDL compiler
- CVE-2012-1182
-- Tyler Hicks <email address hidden> Thu, 12 Apr 2012 05:28:44 -0500
-
samba (2:3.5.8~dfsg-1ubuntu2.3) natty-security; urgency=low
* SECURITY UPDATE: cross-site scripting in SWAT
- debian/patches/CVE-2011-2694.patch: don't display username in
source3/web/swat.c.
- CVE-2011-2694
* SECURITY UPDATE: cross-site request forgery in SWAT
- debian/patches/CVE-2011-2522.patch: implement nonce in
source3/web/{cgi.c,statuspage.c,swat.c,swat_proto.h}.
- CVE-2011-2522
-- Marc Deslauriers <email address hidden> Thu, 28 Jul 2011 08:42:20 -0400
-
samba (2:3.5.8~dfsg-1ubuntu2.2) natty-proposed; urgency=low
* debian/patches/fix-debuglevel-name-conflict.patch:
+ Fix issue with the "debug_level" variable name in libnss_wins.so
conflicting with the "debug_level" global variable that some applications
use (LP: #529714)
-- Chow Loong Jin <email address hidden> Mon, 02 May 2011 21:30:54 +0800
-
samba (2:3.5.8~dfsg-1ubuntu2.1) natty-proposed; urgency=low
* debian/samba.smbd.upstart: Do not attempt to start smbd until network
device is up, previously smbd was starting too early and often failing.
(LP: #771305)
-- Dave Walker (Daviey) <email address hidden> Thu, 28 Apr 2011 10:45:32 +0100
-
samba (2:3.5.8~dfsg-1ubuntu2) natty; urgency=low
* debian/patches/fix-upstream-lp-738968.patch: Fix connection
to EMC Celerra NAS version 5.6.50. (LP: #738968)
-- Chuck Short <email address hidden> Wed, 06 Apr 2011 12:56:42 -0400
-
samba (2:3.5.8~dfsg-1ubuntu1) natty; urgency=low
* Merge from debian unstable. Remaining changes:
+ debian/patches/VERSION.patch:
- set SAMBA_VERSION_SUFFIX to Ubuntu.
+ debian/smb.conf:
- add "(Samba, Ubuntu)" to server string.
- comment out the default [homes] share, and add a comment about
"valid users = %S" to show users how to restrict access to
\\server\username to only username.
- Set 'usershare allow guests', so that usershare admins are
allowed to create public shares in addition to authenticated
ones.
- add map to guest = Bad user, maps bad username to guest access.
+ debian/samba-common.config:
- Do not change priority to high if dhclient3 is installed.
- Use priority medium instead of high for the workgroup question.
+ debian/mksmbpasswd.awk:
- Do not add user with UID less than 1000 to smbpasswd
+ debian/control:
- Make libwbclient0 replace/conflict with hardy's likewise-open.
- Don't build against or suggest ctdb.
- Add dependency on samba-common-bin to samba.
- Add cuups breaks to push the package to aslo upgrade cups (LP: #639768)
+ debian/rules:
- enable "native" PIE hardening.
- Add BIND_NOW to maximize benefit of RELRO hardening.
+ Add ufw integration:
- Created debian/samba.ufw.profile
- debian/rules, debian/samba.dirs, debian/samba.files: install
profile
- debian/control: have samba suggest ufw
+ Add apport hook:
- Created debian/source_samba.py.
- debian/rules, debian/samba.dirs, debian/samba-common-bin.files: install
+ Switch to upstart:
- Add debian/samba.{nmbd,smbd}.upstart.
- Don't ship the /etc/network/if-up.d file.
+ debian/samba.postinst:
- Fixed bashism.
- Avoid scary pdbedit warnings on first import.
+ debian/samba-common.postinst: Add more informative error message for
the case where smb.conf was manually deleted
+ debian/samba.logrotate: Make it upstart compatible
+ debian/samba-common.dhcp: Fix typo to get a proper parsing in
/etc/samba/dhcp.
+ Dropped:
- debian/patches/fix-windows7-print-connection.patch: Merged upstream.
- debian/patches/security-CVE-2011-0719.patch: Merged upstream.
-- Chuck Short <email address hidden> Thu, 10 Mar 2011 10:03:01 -0500
-
samba (2:3.5.6~dfsg-5ubuntu3) natty; urgency=low
* debian/patches/fix-windows7-print-connection.patch: Fix
error "0x000003e6" when trying to connect a Windows 7 printer
to a domain. (LP: #674216)
* debian/samba-common.dhcp: Take in account of the upstart script.
(LP: #652065)
-- Chuck Short <email address hidden> Wed, 02 Mar 2011 16:05:41 -0500
-
samba (2:3.5.6~dfsg-5ubuntu2) natty; urgency=low
* SECURITY UPDATE: denial of service via missing range checks on file
descriptors
- debian/patches/security-CVE-2011-0719.patch: validate miscellaneous
file descriptors.
- CVE-2011-0719
-- Marc Deslauriers <email address hidden> Mon, 28 Feb 2011 14:35:24 -0500
-
samba (2:3.5.6~dfsg-5ubuntu1) natty; urgency=low
* Merge from debian unstable. Remaining changes:
+ debian/patches/VERSION.patch:
- set SAMBA_VERSION_SUFFIX to Ubuntu.
+ debian/smb.conf:
- add "(Samba, Ubuntu)" to server string.
- comment out the default [homes] share, and add a comment about
"valid users = %S" to show users how to restrict access to
\\server\username to only username.
- Set 'usershare allow guests', so that usershare admins are
allowed to create public shares in addition to authenticated
ones.
- add map to guest = Bad user, maps bad username to guest access.
+ debian/samba-common.config:
- Do not change priority to high if dhclient3 is installed.
- Use priority medium instead of high for the workgroup question.
+ debian/mksmbpasswd.awk:
- Do not add user with UID less than 1000 to smbpasswd
+ debian/control:
- Make libwbclient0 replace/conflict with hardy's likewise-open.
- Don't build against or suggest ctdb.
- Add dependency on samba-common-bin to samba.
- Add cuups breaks to push the package to aslo upgrade cups (LP: #639768)
+ debian/rules:
- enable "native" PIE hardening.
- Add BIND_NOW to maximize benefit of RELRO hardening.
+ Add ufw integration:
- Created debian/samba.ufw.profile
- debian/rules, debian/samba.dirs, debian/samba.files: install
profile
- debian/control: have samba suggest ufw
+ Add apport hook:
- Created debian/source_samba.py.
- debian/rules, debian/samba.dirs, debian/samba-common-bin.files: install
+ Switch to upstart:
- Add debian/samba.{nmbd,smbd}.upstart.
- Don't ship the /etc/network/if-up.d file.
+ debian/samba.postinst:
- Fixed bashism.
- Avoid scary pdbedit warnings on first import.
+ debian/samba-common.postinst: Add more informative error message for
the case where smb.conf was manually deleted
+ debian/samba.logrotate: Make it upstart compatible
+ debian/samba-common.dhcp: Fix typo to get a proper parsing in
/etc/samba/dhcp.
samba (2:3.5.6~dfsg-5) unstable; urgency=low
* Fix FTBFS on Hurd. Closes: #610678
* Only try parsing dhcpd.conf is it's not empty,
in dhclient-enter-hooks.d/samba
(partial fix for #594088)
-- Chuck Short <email address hidden> Sun, 06 Feb 2011 20:49:57 +0000
-
samba (2:3.5.6~dfsg-4ubuntu3) natty; urgency=low
* Fix exit code of pre-start script in nmbd upstart script. (LP: #707563)
* Skip testparm run if smb.conf does not exist in nmbd upstart script.
-- Jelmer Vernooij <email address hidden> Tue, 25 Jan 2011 15:16:31 -0800
-
samba (2:3.5.6~dfsg-4ubuntu2) natty; urgency=low
* debian/samba.nmbd.upstart: create /var/run/samba directory before running
testparm. Fixes start-up of nmb after boot. (LP: #596064)
Thanks to Jelmer Vernooij.
-- Chuck Short <email address hidden> Tue, 25 Jan 2011 10:09:33 -0500
-
samba (2:3.5.6~dfsg-4ubuntu1) natty; urgency=low
* Merge from debian unstable. Remaining changes:
+ debian/patches/VERSION.patch:
- set SAMBA_VERSION_SUFFIX to Ubuntu.
+ debian/smb.conf:
- add "(Samba, Ubuntu)" to server string.
- comment out the default [homes] share, and add a comment about
"valid users = %S" to show users how to restrict access to
\\server\username to only username.
- Set 'usershare allow guests', so that usershare admins are
allowed to create public shares in addition to authenticated
ones.
- add map to guest = Bad user, maps bad username to guest access.
+ debian/samba-common.config:
- Do not change priority to high if dhclient3 is installed.
- Use priority medium instead of high for the workgroup question.
+ debian/mksmbpasswd.awk:
- Do not add user with UID less than 1000 to smbpasswd
+ debian/control:
- Make libwbclient0 replace/conflict with hardy's likewise-open.
- Don't build against or suggest ctdb.
- Add dependency on samba-common-bin to samba.
- Add cuups breaks to push the package to aslo upgrade cups (LP: #639768)
+ debian/rules:
- enable "native" PIE hardening.
- Add BIND_NOW to maximize benefit of RELRO hardening.
+ Add ufw integration:
- Created debian/samba.ufw.profile
- debian/rules, debian/samba.dirs, debian/samba.files: install
profile
- debian/control: have samba suggest ufw
+ Add apport hook:
- Created debian/source_samba.py.
- debian/rules, debian/samba.dirs, debian/samba-common-bin.files: install
+ Switch to upstart:
- Add debian/samba.{nmbd,smbd}.upstart.
- Don't ship the /etc/network/if-up.d file.
+ debian/samba.postinst:
- Fixed bashism.
- Avoid scary pdbedit warnings on first import.
+ debian/samba-common.postinst: Add more informative error message for
the case where smb.conf was manually deleted
+ debian/samba.logrotate: Make it upstart compatible
+ debian/samba-common.dhcp: Fix typo to get a proper parsing in
/etc/samba/dhcp.
samba (2:3.5.6~dfsg-4) unstable; urgency=low
* Fix pam_winbind file descriptor leak with a patch
proposed in https://bugzilla.samba.org/show_bug.cgi?id=7265.
Upstream claim is that #7265 is fixed in 3.5.6 but our bug submitter
confirmed it is not while the patch applied here fixes the file
descriptor leak.
Closes: #574468
[ Debconf translations ]
* Brazilian Portuguese (Adriano Rafael Gomes). Closes: #607402
-- Chuck Short <email address hidden> Sat, 15 Jan 2011 23:22:36 +0000
-
samba (2:3.5.6~dfsg-3ubuntu3) natty; urgency=low
* debian/samba.if-up: Only run if /etc/init.d/smbd is installed.
(LP: #659499)
-- Chuck Short <email address hidden> Tue, 04 Jan 2011 09:11:45 -0500
-
samba (2:3.5.6~dfsg-3ubuntu2) natty; urgency=low
* debian/source_samba.py: resolve some inconsistencies in key names
-- Brian Murray <email address hidden> Mon, 20 Dec 2010 13:37:26 -0800
-
samba (2:3.5.6~dfsg-3ubuntu1) natty; urgency=low
* Merge from debian unstable. Remaining changes:
+ debian/patches/VERSION.patch:
- set SAMBA_VERSION_SUFFIX to Ubuntu.
+ debian/smb.conf:
- add "(Samba, Ubuntu)" to server string.
- comment out the default [homes] share, and add a comment about
"valid users = %S" to show users how to restrict access to
\\server\username to only username.
- Set 'usershare allow guests', so that usershare admins are
allowed to create public shares in addition to authenticated
ones.
- add map to guest = Bad user, maps bad username to guest access.
+ debian/samba-common.config:
- Do not change priority to high if dhclient3 is installed.
- Use priority medium instead of high for the workgroup question.
+ debian/mksmbpasswd.awk:
- Do not add user with UID less than 1000 to smbpasswd
+ debian/control:
- Make libwbclient0 replace/conflict with hardy's likewise-open.
- Don't build against or suggest ctdb.
- Add dependency on samba-common-bin to samba.
- Add cuups breaks to push the package to aslo upgrade cups (LP: #639768)
+ debian/rules:
- enable "native" PIE hardening.
- Add BIND_NOW to maximize benefit of RELRO hardening.
+ Add ufw integration:
- Created debian/samba.ufw.profile
- debian/rules, debian/samba.dirs, debian/samba.files: install
profile
- debian/control: have samba suggest ufw
+ Add apport hook:
- Created debian/source_samba.py.
- debian/rules, debian/samba.dirs, debian/samba-common-bin.files: install
+ Switch to upstart:
- Add debian/samba.{nmbd,smbd}.upstart.
- Don't ship the /etc/network/if-up.d file.
+ debian/samba.postinst:
- Fixed bashism.
- Avoid scary pdbedit warnings on first import.
+ debian/samba-common.postinst: Add more informative error message for
the case where smb.conf was manually deleted
+ debian/samba.logrotate: Make it upstart compatible
+ debian/samba-common.dhcp: Fix typo to get a proper parsing in
/etc/samba/dhcp.
+ Dropped:
- debian/patches/fix-lpbug-393012.patch: Dropped in favor of debian's patch.
samba (2:3.5.6~dfsg-3) unstable; urgency=low
[ Julien Cristau ]
* Bump libwbclient0 shlibs to match the newest version in the symbols file.
* Mark libwbclient0 as breaking other samba packages with versions older
than 2:3.4.1, as they were linked against libtalloc1 instead of
libtalloc2, and the combination causes crashes (closes: #593823).
samba (2:3.5.6~dfsg-2) unstable; urgency=low
[ Steve Langasek ]
* Fix debian/rules update-archs target to not add extra spaces on every
invocation...
[ Debconf translations ]
* Catalan (Jordi Mallach). Closes: #601101
* Japanese (Kenshi Muto). Closes: #601364
* Bulgarian (Damyan Ivanov). Closes: #601366
* Hebrew (Omer Zak). Closes: #601633
* Kurdish (Erdal Ronahî). Closes: #601719
* Dutch (Remco Rijnders). Closes: #602220
* Greek (Konstantinos Margaritis).
[ Christian Perrier ]
* Include upstream's patch for "gvfsd-smb (Gnome vfs) fails to copy
files from a SMB share using SMB signing.". Backported from
to be released 3.5.7 version
Closes: #605729
-- Chuck Short <email address hidden> Wed, 08 Dec 2010 00:16:04 +0000
-
samba (2:3.5.6~dfsg-1ubuntu2) natty; urgency=low
* debian/patches/fix-lpbug-393012.patch: Fix for "invalid arguement"
when copying file from windows using nautilus. (LP: #393012)
-- Chuck Short <email address hidden> Fri, 26 Nov 2010 10:00:08 -0500
-
samba (2:3.5.6~dfsg-1ubuntu1) natty; urgency=low
* Merge from debian unstable. Remaining changes:
+ debian/patches/VERSION.patch:
- set SAMBA_VERSION_SUFFIX to Ubuntu.
+ debian/smb.conf:
- add "(Samba, Ubuntu)" to server string.
- comment out the default [homes] share, and add a comment about
"valid users = %S" to show users how to restrict access to
\\server\username to only username.
- Set 'usershare allow guests', so that usershare admins are
allowed to create public shares in addition to authenticated
ones.
- add map to guest = Bad user, maps bad username to guest access.
+ debian/samba-common.config:
- Do not change priority to high if dhclient3 is installed.
- Use priority medium instead of high for the workgroup question.
+ debian/mksmbpasswd.awk:
- Do not add user with UID less than 1000 to smbpasswd.
+ debian/control:
- Make libwbclient0 replace/conflict with hardy's likewise-open.
- Don't build against or suggest ctdb.
- Add dependency on samba-common-bin to samba.
- Add cuups breaks to push the package to aslo upgrade cups (LP: #639768)
+ debian/rules:
- enable "native" PIE hardening.
- Add BIND_NOW to maximize benefit of RELRO hardening.
+ Add ufw integration:
- Created debian/samba.ufw.profile
- debian/rules, debian/samba.dirs, debian/samba.files: install
profile
- debian/control: have samba suggest ufw
+ Add apport hook:
- Created debian/source_samba.py.
- debian/rules, debian/samba.dirs, debian/samba-common-bin.files: install
+ Switch to upstart:
- Add debian/samba.{nmbd,smbd}.upstart.
- Don't ship the /etc/network/if-up.d file.
+ debian/samba.postinst:
- Fixed bashism.
- Avoid scary pdbedit warnings on first import.
+ debian/samba-common.postinst: Add more informative error message for
the case where smb.conf was manually deleted
+ debian/samba.logrotate: Make it upstart compatible
+ debian/samba-common.dhcp: Fix typo to get a proper parsing in
/etc/samba/dhcp.
+ Dropped:
- debian/patches/security-CVE-2010-3069.patch: No longer needed.
samba (2:3.5.6~dfsg-1) unstable; urgency=low
* New upstream release. Fixes the following Debian bug:
- rpcclient readline segfault. Closes: #597203
samba (2:3.5.5~dfsg-1) unstable; urgency=high
[ Christian Perrier ]
* New upstream release. Security release fixing:
- CVE-2019-3069: Buffer overrun vulnerability in sid_parse.
Closes: #596891.
* Fix comment in swat's postinst. It is not turned off by default
Closes: #596040
* Drop transition code from (pre-etch) 3.0.20b-3 version in swat postinst
[ Steve Langasek ]
* debian/control: winbind needs libpam-runtime (>= 1.0.1-6) for
pam-auth-update. Closes: #594325.
[ Debconf translations ]
* Arabic (Ossama Khayat). Closes: #596164
samba (2:3.5.4~dfsg-2) unstable; urgency=low
* Release to unstable
[ Debconf translations ]
* Danish (Joe Dalton). Closes: #592789.
* Galician (Jorge Barreiro). Closes: #592809
[ Steve Langasek ]
* debian/patches/fhs-filespaths.patch, debian/samba.postinst,
debian/winbind.postinst: move some files from /etc/samba to
/var/lib/samba where they belong: MACHINE.SID, schannel_store.tdb,
and idmap2.tdb.
-- Chuck Short <email address hidden> Tue, 12 Oct 2010 12:14:52 +0100
-
samba (2:3.5.4~dfsg-1ubuntu8) maverick; urgency=low
* debian/samba.if-up: We dont use init scripts in samba anymore.
(LP: #654556)
-- Chuck Short <email address hidden> Mon, 04 Oct 2010 09:50:26 -0400