~ahasenack/ubuntu/+source/samba:bionic-smb-browse-nt1-1778322

Branch merges

Propose for merging

Merged into ubuntu/+source/samba:ubuntu/bionic-devel at revision 8b6e3cc238c5fcdda0d179e441b1da4b7c3dc337

Christian Ehrhardt  (community): Approve on 2019-04-01

Canonical Server: Pending requested 2019-03-29

Diff: 105 lines (+72/-0)

4 files modified

debian/changelog (+9/-0)
debian/libsmbclient.symbols (+1/-0)
debian/patches/add-smbc_setOptionProtocols.patch (+61/-0)
debian/patches/series (+1/-0)

api

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

Related charm recipes

8b6e3cc... by Andreas Hasenack on 2019-03-29

changelog

d033123... by Andreas Hasenack on 2019-03-27

    - d/libsmbclient.symbols: add smbc_setOptionProtocols

5466950... by Andreas Hasenack on 2019-03-27

  * Backport function to set protocol levels (LP: #1778322):
    - d/p/add-smbc_setOptionProtocols.patch: add function to set protocol
      levels

ae2696b... by Andreas Hasenack on 2019-02-04

Import patches-unapplied version 2:4.7.6+dfsg~ubuntu-0ubuntu2.7 to ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: d5c56bc1dfa13286d7b59b6f5a51ec7732b9640b

New changelog entries:
  * d/p/memleak-fix-13372.patch: Fix memory leak in vfswrap_getwd().
    (LP: #1814532)

d5c56bc... by Karl Stenerud on 2018-11-23

Import patches-unapplied version 2:4.7.6+dfsg~ubuntu-0ubuntu2.6 to ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: f4ad6b84ccbbaebd6bc9a340e6a33a88199f1bbd

New changelog entries:
  * d/p/auth-fail-eexist.diff: smbc_opendir should not return EEXIST with
    invalid login credentials. Thanks to David Mulder. (LP: #1801227)

f4ad6b8... by Marc Deslauriers on 2018-11-16

Import patches-unapplied version 2:4.7.6+dfsg~ubuntu-0ubuntu2.5 to ubuntu/bionic-security

Imported using git-ubuntu import.

Changelog parent: b731e5555d62b55685274c7952e82cbbd6ed93da

New changelog entries:
  * SECURITY UPDATE: Unprivileged adding of CNAME record causing loop in AD
    Internal DNS server
    - debian/patches/CVE-2018-14629.patch: add CNAME loop prevention using
      counter in python/samba/tests/dns.py, selftest/knownfail.d/dns,
      source4/dns_server/dns_query.c.
    - CVE-2018-14629
  * SECURITY UPDATE: Double-free in Samba AD DC KDC with PKINIT
    - debian/patches/CVE-2018-16841-1.patch: fix segfault on PKINIT with
      mis-matching principal in source4/kdc/db-glue.c.
    - debian/patches/CVE-2018-16841-2.patch: check for mismatching
      principal in testprogs/blackbox/test_pkinit_heimdal.sh.
    - CVE-2018-16841
  * SECURITY UPDATE: NULL pointer de-reference in Samba AD DC LDAP server
    - debian/patches/CVE-2018-16851.patch: check ret before manipulating
      blob in source4/ldap_server/ldap_server.c.
    - CVE-2018-16851

b731e55... by Andreas Hasenack on 2018-11-08

Import patches-unapplied version 2:4.7.6+dfsg~ubuntu-0ubuntu2.4 to ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: a84a32b83285e6c0ab6775b63763f7e8d6341d24

New changelog entries:
  * d/p/fix-rmdir.patch: fix the patch to not apply with offset, which
    previously made it change the wrong, almost identical, function.
    (LP: #1795772)

a84a32b... by Andreas Hasenack on 2018-10-11

Import patches-unapplied version 2:4.7.6+dfsg~ubuntu-0ubuntu2.3 to ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: d610344c8183790777728b57b680973645cb52b1

New changelog entries:
  * d/p/fix-rmdir.patch: Fix to make smbclient report directory-not-empty
    errors (LP: #1795772)

d610344... by Marc Deslauriers on 2018-08-06

Import patches-unapplied version 2:4.7.6+dfsg~ubuntu-0ubuntu2.2 to ubuntu/bionic-security

Imported using git-ubuntu import.

Changelog parent: e5340817476d59b9a34901d246d478243fefe51f

New changelog entries:
  * SECURITY UPDATE: Insufficient input validation on client directory
    listing in libsmbclient
    - debian/patches/CVE-2018-10858-*.patch: don't overwrite passed in
      buffer in source3/libsmb/libsmb_path.c, add checks to
      source3/libsmb/libsmb_dir.c, source3/libsmb/libsmb_path.c.
    - CVE-2018-10858
  * SECURITY UPDATE: Denial of Service Attack on AD DC DRSUAPI server
    - debian/patches/CVE-2018-10918.patch: fix null pointer dereference in
      source4/dsdb/samdb/cracknames.c, add test to
      source4/torture/drs/python/cracknames.py.
    - CVE-2018-10918
  * SECURITY UPDATE: Confidential attribute disclosure AD LDAP server
    - debian/patches/CVE-2018-10919-*.patch: fix access checks and add
      tests.
    - CVE-2018-10919
  * SECURITY UPDATE: Weak authentication protocol allowed
    - debian/patches/CVE-2018-1139-*.patch: Do not allow ntlmv1 over SMB1
      and add tests.
    - CVE-2018-1139

e534081... by Andreas Hasenack on 2018-04-18

Import patches-unapplied version 2:4.7.6+dfsg~ubuntu-0ubuntu2 to ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: d5440066d851bdcebee5399a1029b95fa7357261

New changelog entries:
  * debian/patches/passdb_dont_return_ok_if_pinfo_not_filled.patch:
    [PATCH] s3:passdb: Do not return OK if we don't have pinfo filled.
    Thanks to Andreas Schneider <email address hidden>. (LP: #1761737)