ubuntu/+source/samba:applied/ubuntu/dapper-devel

Last commit made on 2011-02-28
Get this branch:
git clone -b applied/ubuntu/dapper-devel https://git.launchpad.net/ubuntu/+source/samba
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/dapper-devel
Repository:
lp:ubuntu/+source/samba

Recent commits

9fca0fe... by Marc Deslauriers on 2011-02-24

Import patches-applied version 3.0.22-1ubuntu3.14 to applied/ubuntu/dapper-security

Imported using git-ubuntu import.

Changelog parent: cc98053f8767f40eb9883d076c08d8ef0b713a41
Unapplied parent: 683aba1a78258d3e7fc53c63e968228a98f0abd0

New changelog entries:
  * SECURITY UPDATE: denial of service via missing range checks on file
    descriptors
    - debian/patches/security-CVE-2011-0719.patch: validate miscellaneous
      file descriptors.
    - CVE-2011-0719

683aba1... by Marc Deslauriers on 2011-02-24

Import patches-unapplied version 3.0.22-1ubuntu3.14 to ubuntu/dapper-security

Imported using git-ubuntu import.

Changelog parent: 4914c5bfbdb00285dbd849597ec387beafc660f4

New changelog entries:
  * SECURITY UPDATE: denial of service via missing range checks on file
    descriptors
    - debian/patches/security-CVE-2011-0719.patch: validate miscellaneous
      file descriptors.
    - CVE-2011-0719

cc98053... by Marc Deslauriers on 2010-09-09

Import patches-applied version 3.0.22-1ubuntu3.13 to applied/ubuntu/dapper-security

Imported using git-ubuntu import.

Changelog parent: 108cf3b6a2b30015a2fdae9cdeb4a11635f35c96
Unapplied parent: 4914c5bfbdb00285dbd849597ec387beafc660f4

New changelog entries:
  * SECURITY UPDATE: denial of service and possible arbitrary code
    execution via large number of SID sub authorities
    - debian/patches/security-CVE-2010-3069.patch: limit number of SID
      sub authorities in source3/lib/util_sid.c, source/libads/ldap.c,
      source/libsmb/cliquota.c, source/smbd/nttrans.c.
    - CVE-2010-3069

4914c5b... by Marc Deslauriers on 2010-09-09

Import patches-unapplied version 3.0.22-1ubuntu3.13 to ubuntu/dapper-security

Imported using git-ubuntu import.

Changelog parent: b7f5693e970cdf1ec40d4d350da370e2e8cba23b

New changelog entries:
  * SECURITY UPDATE: denial of service and possible arbitrary code
    execution via large number of SID sub authorities
    - debian/patches/security-CVE-2010-3069.patch: limit number of SID
      sub authorities in source3/lib/util_sid.c, source/libads/ldap.c,
      source/libsmb/cliquota.c, source/smbd/nttrans.c.
    - CVE-2010-3069

108cf3b... by Kees Cook on 2010-06-15

Import patches-applied version 3.0.22-1ubuntu3.12 to applied/ubuntu/dapper-security

Imported using git-ubuntu import.

Changelog parent: cf45792b0c80acb8a6d39997c5279fbc31024d4b
Unapplied parent: b7f5693e970cdf1ec40d4d350da370e2e8cba23b

New changelog entries:
  * SECURITY UPDATE: arbitrary remote code execution.
    - debian/patches/security-CVE-2010-2063.patch: upstream fixes.

b7f5693... by Kees Cook on 2010-06-15

Import patches-unapplied version 3.0.22-1ubuntu3.12 to ubuntu/dapper-security

Imported using git-ubuntu import.

Changelog parent: 3da2e5600cffefe0e3ce305830469df0bda3b785

New changelog entries:
  * SECURITY UPDATE: arbitrary remote code execution.
    - debian/patches/security-CVE-2010-2063.patch: upstream fixes.

cf45792... by Marc Deslauriers on 2010-03-18

Import patches-applied version 3.0.22-1ubuntu3.11 to applied/ubuntu/dapper-security

Imported using git-ubuntu import.

Changelog parent: 58fc444ed75abe56679cbdee324db6d5ae72acee
Unapplied parent: 3da2e5600cffefe0e3ce305830469df0bda3b785

New changelog entries:
  * SECURITY UPDATE: arbitrary file disclosure via wide links
    - debian/patches/security-CVE-2010-0926.patch: disable wide links when
      UNIX extensions are enabled in source/param/loadparm.c,
      source/smbd/service.c, source/smbd/trans2.c, source/smbd/vfs.c,
      docs/htmldocs/manpages/smb.conf.5.html, docs/manpages/smb.conf.5.
    - CVE-2010-0926
  * WARNING: This changes the default samba behaviour. For security
    reasons, it is no longer possible to use wide links and UNIX
    extensions at the same time. After applying this security update, wide
    links will be disabled automatically as UNIX extensions are turned on
    by default. If wide links are required, you may re-enable them by
    adding "unix extensions = no" to the [global] section of
    the /etc/samba/smb.conf configuration file.

3da2e56... by Marc Deslauriers on 2010-03-18

Import patches-unapplied version 3.0.22-1ubuntu3.11 to ubuntu/dapper-security

Imported using git-ubuntu import.

Changelog parent: ad115aee9f4a0eab4c79a2bc4ba316746a5e6017

New changelog entries:
  * SECURITY UPDATE: arbitrary file disclosure via wide links
    - debian/patches/security-CVE-2010-0926.patch: disable wide links when
      UNIX extensions are enabled in source/param/loadparm.c,
      source/smbd/service.c, source/smbd/trans2.c, source/smbd/vfs.c,
      docs/htmldocs/manpages/smb.conf.5.html, docs/manpages/smb.conf.5.
    - CVE-2010-0926
  * WARNING: This changes the default samba behaviour. For security
    reasons, it is no longer possible to use wide links and UNIX
    extensions at the same time. After applying this security update, wide
    links will be disabled automatically as UNIX extensions are turned on
    by default. If wide links are required, you may re-enable them by
    adding "unix extensions = no" to the [global] section of
    the /etc/samba/smb.conf configuration file.

58fc444... by Marc Deslauriers on 2010-01-26

Import patches-applied version 3.0.22-1ubuntu3.10 to applied/ubuntu/dapper-security

Imported using git-ubuntu import.

Changelog parent: 3d3e1ce2735a883d573bd315db88847c2146a60c
Unapplied parent: ad115aee9f4a0eab4c79a2bc4ba316746a5e6017

New changelog entries:
  * SECURITY UPDATE: privilege escalation via mount.cifs race
    - debian/patches/security-CVE-2009-3297.patch: validate mount point and
      perform mount in "." to prevent race in source/client/mount.cifs.c.
    - CVE-2009-3297

ad115ae... by Marc Deslauriers on 2010-01-26

Import patches-unapplied version 3.0.22-1ubuntu3.10 to ubuntu/dapper-security

Imported using git-ubuntu import.

Changelog parent: 5299366592a843c9fdc05f7040011cbf945f21de

New changelog entries:
  * SECURITY UPDATE: privilege escalation via mount.cifs race
    - debian/patches/security-CVE-2009-3297.patch: validate mount point and
      perform mount in "." to prevent race in source/client/mount.cifs.c.
    - CVE-2009-3297