Last commit made on 2012-05-01
Get this branch:
git clone -b ubuntu/natty-security https://git.launchpad.net/ubuntu/+source/samba
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information


Recent commits

840d2d8... by Tyler Hicks on 2012-04-24

Import patches-unapplied version 2:3.5.8~dfsg-1ubuntu2.5 to ubuntu/natty-security

Imported using git-ubuntu import.

Changelog parent: 9132aad3d3631c61fd607d93f2dfed6812e4b646

New changelog entries:
  * SECURITY UPDATE: Authenticated user can take ownership of arbitrary files
    and directories
    - debian/patches/CVE-2012-2111.patch: Remove excessive permissions granted
      in account related Local Security Authority remote procedure calls.
      Based on upstream patch.
    - CVE-2012-2111

9132aad... by Tyler Hicks on 2012-04-12

Import patches-unapplied version 2:3.5.8~dfsg-1ubuntu2.4 to ubuntu/natty-security

Imported using git-ubuntu import.

Changelog parent: 10cc8a61f1d48bf098f3f0bcf6c5aab5d9361848

New changelog entries:
  * SECURITY UPDATE: Unauthenticated remote code execution via
    RPC calls (LP: #978458)
    - debian/patches/CVE-2012-1182-1.patch: Fix PIDL compiler to generate code
      that uses the same value for array allocation and array length checks.
      Based on upstream patch.
    - debian/patches/CVE-2012-1182-2.patch: Regenerate PIDL generated files with
      the patched PIDL compiler
    - CVE-2012-1182

10cc8a6... by Marc Deslauriers on 2011-07-28

Import patches-unapplied version 2:3.5.8~dfsg-1ubuntu2.3 to ubuntu/natty-security

Imported using git-ubuntu import.

Changelog parent: ec0e964aa08a7b5da4c06e0474c4d2259629c2be

New changelog entries:
  * SECURITY UPDATE: cross-site scripting in SWAT
    - debian/patches/CVE-2011-2694.patch: don't display username in
    - CVE-2011-2694
  * SECURITY UPDATE: cross-site request forgery in SWAT
    - debian/patches/CVE-2011-2522.patch: implement nonce in
    - CVE-2011-2522

ec0e964... by Chow Loong Jin on 2011-05-02

Import patches-unapplied version 2:3.5.8~dfsg-1ubuntu2.2 to ubuntu/natty-proposed

Imported using git-ubuntu import.

Changelog parent: 6d5cca8614e132247a405a6f7cdcf7bf14d32b2a

New changelog entries:
  * debian/patches/fix-debuglevel-name-conflict.patch:
    + Fix issue with the "debug_level" variable name in libnss_wins.so
      conflicting with the "debug_level" global variable that some applications
      use (LP: #529714)

6d5cca8... by Dave Walker on 2011-04-28

Import patches-unapplied version 2:3.5.8~dfsg-1ubuntu2.1 to ubuntu/natty-proposed

Imported using git-ubuntu import.

Changelog parent: 9a8f30b133b0cb90a1816228dc95a0bd30579afa

New changelog entries:
  * debian/samba.smbd.upstart: Do not attempt to start smbd until network
    device is up, previously smbd was starting too early and often failing.
    (LP: #771305)

9a8f30b... by Chuck Short on 2011-04-06

Import patches-unapplied version 2:3.5.8~dfsg-1ubuntu2 to ubuntu/natty

Imported using git-ubuntu import.

Changelog parent: d7b58fff1e513cc9b645668b29ac0746198c0daa

New changelog entries:
  * debian/patches/fix-upstream-lp-738968.patch: Fix connection
    to EMC Celerra NAS version 5.6.50. (LP: #738968)

d7b58ff... by Chuck Short on 2011-03-10

Import patches-unapplied version 2:3.5.8~dfsg-1ubuntu1 to ubuntu/natty

Imported using git-ubuntu import.

Changelog parent: 40a7006140b6004c42762fa4cfe7467158731d61

New changelog entries:
  * Merge from debian unstable. Remaining changes:
    + debian/patches/VERSION.patch:
      - set SAMBA_VERSION_SUFFIX to Ubuntu.
    + debian/smb.conf:
      - add "(Samba, Ubuntu)" to server string.
      - comment out the default [homes] share, and add a comment about
        "valid users = %S" to show users how to restrict access to
        \\server\username to only username.
      - Set 'usershare allow guests', so that usershare admins are
        allowed to create public shares in addition to authenticated
      - add map to guest = Bad user, maps bad username to guest access.
    + debian/samba-common.config:
      - Do not change priority to high if dhclient3 is installed.
      - Use priority medium instead of high for the workgroup question.
    + debian/mksmbpasswd.awk:
      - Do not add user with UID less than 1000 to smbpasswd
    + debian/control:
      - Make libwbclient0 replace/conflict with hardy's likewise-open.
      - Don't build against or suggest ctdb.
      - Add dependency on samba-common-bin to samba.
      - Add cuups breaks to push the package to aslo upgrade cups (LP: #639768)
    + debian/rules:
      - enable "native" PIE hardening.
      - Add BIND_NOW to maximize benefit of RELRO hardening.
    + Add ufw integration:
      - Created debian/samba.ufw.profile
      - debian/rules, debian/samba.dirs, debian/samba.files: install
      - debian/control: have samba suggest ufw
    + Add apport hook:
      - Created debian/source_samba.py.
      - debian/rules, debian/samba.dirs, debian/samba-common-bin.files: install
    + Switch to upstart:
      - Add debian/samba.{nmbd,smbd}.upstart.
      - Don't ship the /etc/network/if-up.d file.
    + debian/samba.postinst:
      - Fixed bashism.
      - Avoid scary pdbedit warnings on first import.
    + debian/samba-common.postinst: Add more informative error message for
      the case where smb.conf was manually deleted
    + debian/samba.logrotate: Make it upstart compatible
    + debian/samba-common.dhcp: Fix typo to get a proper parsing in
    + Dropped:
      - debian/patches/fix-windows7-print-connection.patch: Merged upstream.
      - debian/patches/security-CVE-2011-0719.patch: Merged upstream.

40a7006... by Christian Perrier on 2011-03-08

Import patches-unapplied version 2:3.5.8~dfsg-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: cb36eb95c9ac789e0a7390cf93317e8eea7f934e

New changelog entries:
  * New upstream release. This fixes the following bugs:
    - Winbind leaks gids with idmap ldap backend (upstrem #7777)
      Closes: #613624
    - printing from Windows 7 fails with 0x000003e6
      Closes: #617429
  * smb.conf(5) restored from samba 3.5.6 as a workaround to upstream

cb36eb9... by Christian Perrier on 2011-03-01

Import patches-unapplied version 2:3.5.7~dfsg-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: afe1d66d3c3b09d5c917c6d3bbaab5cb8630d619

New changelog entries:
  [ Christian Perrier ]
  * New upstream release
  * Security update, fixing the following issue:
    - CVE-2011-0719: denial of service by memory corruption
  * Use architecture wildcard "linux-any" in build dependencies
    Closes: #563372

afe1d66... by Christian Perrier on 2011-02-05

Import patches-unapplied version 2:3.5.6~dfsg-5 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 784a6b9685deead3d0efcc58aafd1d805a5609a6

New changelog entries:
  * Fix FTBFS on Hurd. Closes: #610678
  * Only try parsing dhcpd.conf is it's not empty,
    in dhclient-enter-hooks.d/samba
    (partial fix for #594088)