ubuntu/+source/samba:applied/ubuntu/gutsy-updates

Last commit made on 2008-06-30
Get this branch:
git clone -b applied/ubuntu/gutsy-updates https://git.launchpad.net/ubuntu/+source/samba
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/gutsy-updates
Repository:
lp:ubuntu/+source/samba

Recent commits

3ab4158... by Jamie Strandboge on 2008-06-28

Import patches-applied version 3.0.26a-1ubuntu2.5 to applied/ubuntu/gutsy-security

Imported using git-ubuntu import.

Changelog parent: ecf8d4b2d9e504a9db8789c5acc7a507f0c98a57
Unapplied parent: 7c162ce4bb773527058045f76cab014915c41d24

New changelog entries:
  * RELIABILITY UPDATE: the patch for CVE-2008-1105 introduced a regression
    with certain client and server interactions with large file sizes.
  * debian/patches/security-CVE-2008-1105_pt2.patch: adjust cli_negprot()
    to properly calculate buffer sizes
  * References
    LP: #241448
    https://bugzilla.samba.org/show_bug.cgi?id=5517

7c162ce... by Jamie Strandboge on 2008-06-28

Import patches-unapplied version 3.0.26a-1ubuntu2.5 to ubuntu/gutsy-security

Imported using git-ubuntu import.

Changelog parent: 6e97b9bf94a70b27a8804fe5e44a989a979f122d

New changelog entries:
  * RELIABILITY UPDATE: the patch for CVE-2008-1105 introduced a regression
    with certain client and server interactions with large file sizes.
  * debian/patches/security-CVE-2008-1105_pt2.patch: adjust cli_negprot()
    to properly calculate buffer sizes
  * References
    LP: #241448
    https://bugzilla.samba.org/show_bug.cgi?id=5517

ecf8d4b... by Jamie Strandboge on 2008-06-03

Import patches-applied version 3.0.26a-1ubuntu2.4 to applied/ubuntu/gutsy-security

Imported using git-ubuntu import.

Changelog parent: ce3371e5e90dc5f0b852e35c19a9c41536db9158
Unapplied parent: 6e97b9bf94a70b27a8804fe5e44a989a979f122d

New changelog entries:
  * SECURITY UPDATE: heap overflow when processing crafted SMB responses
  * debian/patches/security-CVE-2008-1105.patch: update util_sock.c to require
    specifying the buffer size and update client.c, smbctool.c, smbfilter.c,
    and process.c for these changes
  * SECURITY UPDATE: buffer overrun in nmbd when processing crafted GETDC
    mailslot requests
  * debian/patches/security_CVE-2007-4572.patch: check return values and
    sizeof strings in charcnv.c, ntlmssp_parse.c, nmbd_processlogon.c.
    Backport regression fixes from upstream.
  * References:
    CVE-2008-1105
    CVE-2007-4572
    LP: #235912

6e97b9b... by Jamie Strandboge on 2008-06-03

Import patches-unapplied version 3.0.26a-1ubuntu2.4 to ubuntu/gutsy-security

Imported using git-ubuntu import.

Changelog parent: b0ca305cf147b8b993797f045bc016694d825561

New changelog entries:
  * SECURITY UPDATE: heap overflow when processing crafted SMB responses
  * debian/patches/security-CVE-2008-1105.patch: update util_sock.c to require
    specifying the buffer size and update client.c, smbctool.c, smbfilter.c,
    and process.c for these changes
  * SECURITY UPDATE: buffer overrun in nmbd when processing crafted GETDC
    mailslot requests
  * debian/patches/security_CVE-2007-4572.patch: check return values and
    sizeof strings in charcnv.c, ntlmssp_parse.c, nmbd_processlogon.c.
    Backport regression fixes from upstream.
  * References:
    CVE-2008-1105
    CVE-2007-4572
    LP: #235912

ce3371e... by Kees Cook on 2007-12-15

Import patches-applied version 3.0.26a-1ubuntu2.3 to applied/ubuntu/gutsy-security

Imported using git-ubuntu import.

Changelog parent: d778b4002df2366116c8d0ece5904eed1cb055cf
Unapplied parent: b0ca305cf147b8b993797f045bc016694d825561

New changelog entries:
  * SECURITY UPDATE: remote code execution via GETDC mailslot request.
  * Add security-CVE-2007-6015.patch: thanks to Steve Langasek.
  * References
    CVE-2007-6015

b0ca305... by Kees Cook on 2007-12-15

Import patches-unapplied version 3.0.26a-1ubuntu2.3 to ubuntu/gutsy-security

Imported using git-ubuntu import.

Changelog parent: 20d9d7c10fc5337a11b67568ae24ca5ba14f32ed

New changelog entries:
  * SECURITY UPDATE: remote code execution via GETDC mailslot request.
  * Add security-CVE-2007-6015.patch: thanks to Steve Langasek.
  * References
    CVE-2007-6015

d778b40... by Jamie Strandboge on 2007-11-16

Import patches-applied version 3.0.26a-1ubuntu2.2 to applied/ubuntu/gutsy-security

Imported using git-ubuntu import.

Changelog parent: c860e09d169ffe8de5a725312ecfd3fcdbfe8501
Unapplied parent: 20d9d7c10fc5337a11b67568ae24ca5ba14f32ed

New changelog entries:
  * removed debian/patches/security_CVE-2007-4572.patch as it
    caused regressions. This is believed to be a non-exploitable
    DoS, but will provide updated packages when a suitable fix
    is found.
  * References:
    LP #163042
    LP #163116
    https://bugzilla.samba.org/show_bug.cgi?id=5087

20d9d7c... by Jamie Strandboge on 2007-11-16

Import patches-unapplied version 3.0.26a-1ubuntu2.2 to ubuntu/gutsy-security

Imported using git-ubuntu import.

Changelog parent: 7e10684fb1fbb9e4e4aa435536f393965ee49c9a

New changelog entries:
  * removed debian/patches/security_CVE-2007-4572.patch as it
    caused regressions. This is believed to be a non-exploitable
    DoS, but will provide updated packages when a suitable fix
    is found.
  * References:
    LP #163042
    LP #163116
    https://bugzilla.samba.org/show_bug.cgi?id=5087

c860e09... by Jamie Strandboge on 2007-11-14

Import patches-applied version 3.0.26a-1ubuntu2.1 to applied/ubuntu/gutsy-security

Imported using git-ubuntu import.

Changelog parent: 63e57e402097bc06b6ce6e83134fc67a011717db
Unapplied parent: 7e10684fb1fbb9e4e4aa435536f393965ee49c9a

New changelog entries:
  * SECURITY UPDATE: buffer overrun in nmbd when processing crafted GETDC
    mailslot requests
  * debian/patches/security_CVE-2007-4572.patch: check return values and
    sizeof strings in charcnv.c, ntlmssp_parse.c, nmbd_processlogon.c
  * SECURITY UPDATE: arbitrary code execution in nmbd when configured as
    a WINS server when processing name registration and name query requests
  * debian/patches/security_CVE-2007-5398.patch: properly check len in
    nmbd_packets.c
  * References
    CVE-2007-4572
    CVE-2007-5398

7e10684... by Jamie Strandboge on 2007-11-14

Import patches-unapplied version 3.0.26a-1ubuntu2.1 to ubuntu/gutsy-security

Imported using git-ubuntu import.

Changelog parent: ed6073c982a3137199449b813d54075077fcffc5

New changelog entries:
  * SECURITY UPDATE: buffer overrun in nmbd when processing crafted GETDC
    mailslot requests
  * debian/patches/security_CVE-2007-4572.patch: check return values and
    sizeof strings in charcnv.c, ntlmssp_parse.c, nmbd_processlogon.c
  * SECURITY UPDATE: arbitrary code execution in nmbd when configured as
    a WINS server when processing name registration and name query requests
  * debian/patches/security_CVE-2007-5398.patch: properly check len in
    nmbd_packets.c
  * References
    CVE-2007-4572
    CVE-2007-5398