ubuntu/+source/samba:applied/ubuntu/karmic-updates

Last commit made on 2011-02-28
Get this branch:
git clone -b applied/ubuntu/karmic-updates https://git.launchpad.net/ubuntu/+source/samba
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/karmic-updates
Repository:
lp:ubuntu/+source/samba

Recent commits

12ee347... by Marc Deslauriers on 2011-02-23

Import patches-applied version 2:3.4.0-3ubuntu5.8 to applied/ubuntu/karmic-security

Imported using git-ubuntu import.

Changelog parent: 165c5a784ec8f52d8ee3a1f77fbd42d33a5fa3ff
Unapplied parent: 3a961f430f096aaa80776d0357efa21f3a233cd8

New changelog entries:
  * SECURITY UPDATE: denial of service via missing range checks on file
    descriptors
    - debian/patches/security-CVE-2011-0719.patch: validate miscellaneous
      file descriptors.
    - CVE-2011-0719

3a961f4... by Marc Deslauriers on 2011-02-23

Import patches-unapplied version 2:3.4.0-3ubuntu5.8 to ubuntu/karmic-security

Imported using git-ubuntu import.

Changelog parent: 7c336b3605d9cdc423cb9412624bff00450f1dd3

New changelog entries:
  * SECURITY UPDATE: denial of service via missing range checks on file
    descriptors
    - debian/patches/security-CVE-2011-0719.patch: validate miscellaneous
      file descriptors.
    - CVE-2011-0719

165c5a7... by Marc Deslauriers on 2010-09-09

Import patches-applied version 2:3.4.0-3ubuntu5.7 to applied/ubuntu/karmic-security

Imported using git-ubuntu import.

Changelog parent: 801c2392a064bf46a92c91c56e5eea673ba256e9
Unapplied parent: 7c336b3605d9cdc423cb9412624bff00450f1dd3

New changelog entries:
  * SECURITY UPDATE: denial of service and possible arbitrary code
    execution via large number of SID sub authorities
    - debian/patches/security-CVE-2010-3069.patch: limit number of SID
      sub authorities in libcli/security/dom_sid.*, source3/lib/util_sid.c,
      source3/libads/ldap.c, source3/libsmb/cliquota.c,
      source3/smbd/nttrans.c.
    - CVE-2010-3069

7c336b3... by Marc Deslauriers on 2010-09-09

Import patches-unapplied version 2:3.4.0-3ubuntu5.7 to ubuntu/karmic-security

Imported using git-ubuntu import.

Changelog parent: b9f0d7c2a1dc728fcd55270331ddf32f69eede11

New changelog entries:
  * SECURITY UPDATE: denial of service and possible arbitrary code
    execution via large number of SID sub authorities
    - debian/patches/security-CVE-2010-3069.patch: limit number of SID
      sub authorities in libcli/security/dom_sid.*, source3/lib/util_sid.c,
      source3/libads/ldap.c, source3/libsmb/cliquota.c,
      source3/smbd/nttrans.c.
    - CVE-2010-3069

801c239... by Marc Deslauriers on 2010-03-22

Import patches-applied version 2:3.4.0-3ubuntu5.6 to applied/ubuntu/karmic-security

Imported using git-ubuntu import.

Changelog parent: ad4d17e19bd9e9d8112424e3d408fdd8d2a8972d
Unapplied parent: b9f0d7c2a1dc728fcd55270331ddf32f69eede11

New changelog entries:
  * SECURITY UPDATE: arbitrary file disclosure via wide links
    - debian/patches/security-CVE-2010-0926.patch: disable wide links when
      UNIX extensions are enabled in source3/include/proto.h,
      source3/param/loadparm.c, source3/smbd/service.c,
      source3/smbd/trans2.c, source3/smbd/vfs.c,
      docs/htmldocs/manpages/smb.conf.5.html and docs/manpages/smb.conf.5.
    - CVE-2010-0926
  * WARNING: This changes the default samba behaviour. For security
    reasons, it is no longer possible to use wide links and UNIX
    extensions at the same time. After applying this security update, wide
    links will be disabled automatically as UNIX extensions are turned on
    by default. If wide links are required, you may re-enable them by
    adding "unix extensions = no" to the [global] section of
    the /etc/samba/smb.conf configuration file.

b9f0d7c... by Marc Deslauriers on 2010-03-22

Import patches-unapplied version 2:3.4.0-3ubuntu5.6 to ubuntu/karmic-security

Imported using git-ubuntu import.

Changelog parent: 1c703875537b13e67e926b3c1a23325f33cd6232

New changelog entries:
  * SECURITY UPDATE: arbitrary file disclosure via wide links
    - debian/patches/security-CVE-2010-0926.patch: disable wide links when
      UNIX extensions are enabled in source3/include/proto.h,
      source3/param/loadparm.c, source3/smbd/service.c,
      source3/smbd/trans2.c, source3/smbd/vfs.c,
      docs/htmldocs/manpages/smb.conf.5.html and docs/manpages/smb.conf.5.
    - CVE-2010-0926
  * WARNING: This changes the default samba behaviour. For security
    reasons, it is no longer possible to use wide links and UNIX
    extensions at the same time. After applying this security update, wide
    links will be disabled automatically as UNIX extensions are turned on
    by default. If wide links are required, you may re-enable them by
    adding "unix extensions = no" to the [global] section of
    the /etc/samba/smb.conf configuration file.

ad4d17e... by Chuck Short on 2010-02-05

Import patches-applied version 2:3.4.0-3ubuntu5.5 to applied/ubuntu/karmic-proposed

Imported using git-ubuntu import.

Changelog parent: 23073ac701f6bf8b3a11c000a61e8d4e1be83ede
Unapplied parent: 1c703875537b13e67e926b3c1a23325f33cd6232

New changelog entries:
  * debian/patches/fix-libsmb-keepalive-packets.patch: Fix winbind authentication
    due to an invalid NTML2 signature. (LP: #479955)
    (https://bugzilla.samba.org/show_bug.cgi?id=6646)
  * debian/patches/fix-samba-point-and-print.patch: Allow automatic download
    of printer drivers from a Samba PDC (LP: #500457)
    (https://bugzilla.samba.org/show_bug.cgi?id=6568)
  * debian/patches/fix-too-many-openfiles.patch: When connecting to a Windows
    7 share users will get an error message "Too many open files are in use"
    after a certain number of files are copied. (LP: #462172 )
    (https://bugzilla.samba.org/show_bug.cgi?id=6837)
  * debian/patches/fix-win98-failed-connect.patch: Allow win98 clients to
    connect a samba server. Users will get an "Error 66" message. (LP: #502878)
    (https://bugzilla.samba.org/show_bug.cgi?id=6551)

1c70387... by Chuck Short on 2010-02-05

Import patches-unapplied version 2:3.4.0-3ubuntu5.5 to ubuntu/karmic-proposed

Imported using git-ubuntu import.

Changelog parent: d13d6a5001e976419ad13226206b1f7e46dfaf3d

New changelog entries:
  * debian/patches/fix-libsmb-keepalive-packets.patch: Fix winbind authentication
    due to an invalid NTML2 signature. (LP: #479955)
    (https://bugzilla.samba.org/show_bug.cgi?id=6646)
  * debian/patches/fix-samba-point-and-print.patch: Allow automatic download
    of printer drivers from a Samba PDC (LP: #500457)
    (https://bugzilla.samba.org/show_bug.cgi?id=6568)
  * debian/patches/fix-too-many-openfiles.patch: When connecting to a Windows
    7 share users will get an error message "Too many open files are in use"
    after a certain number of files are copied. (LP: #462172 )
    (https://bugzilla.samba.org/show_bug.cgi?id=6837)
  * debian/patches/fix-win98-failed-connect.patch: Allow win98 clients to
    connect a samba server. Users will get an "Error 66" message. (LP: #502878)
    (https://bugzilla.samba.org/show_bug.cgi?id=6551)

23073ac... by Marc Deslauriers on 2010-01-26

Import patches-applied version 2:3.4.0-3ubuntu5.4 to applied/ubuntu/karmic-security

Imported using git-ubuntu import.

Changelog parent: dda8965e66cd5a30bbb42f69e31509db1085c185
Unapplied parent: d13d6a5001e976419ad13226206b1f7e46dfaf3d

New changelog entries:
  * SECURITY UPDATE: privilege escalation via mount.cifs race
    - debian/patches/security-CVE-2009-3297.patch: validate mount point and
      perform mount in "." to prevent race in source3/client/mount.cifs.c.
    - CVE-2009-3297

d13d6a5... by Marc Deslauriers on 2010-01-26

Import patches-unapplied version 2:3.4.0-3ubuntu5.4 to ubuntu/karmic-security

Imported using git-ubuntu import.

Changelog parent: 5f4a02b47ed57d13221de35ff5e3c2ab4a6759dd

New changelog entries:
  * SECURITY UPDATE: privilege escalation via mount.cifs race
    - debian/patches/security-CVE-2009-3297.patch: validate mount point and
      perform mount in "." to prevent race in source3/client/mount.cifs.c.
    - CVE-2009-3297