ubuntu/+source/samba:ubuntu/vivid-devel

Last commit made on 2016-01-05
Get this branch:
git clone -b ubuntu/vivid-devel https://git.launchpad.net/ubuntu/+source/samba
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
ubuntu/vivid-devel
Repository:
lp:ubuntu/+source/samba

Recent commits

9ba4f60... by Marc Deslauriers on 2016-01-04

Import patches-unapplied version 2:4.1.13+dfsg-4ubuntu3.1 to ubuntu/vivid-security

Imported using git-ubuntu import.

Changelog parent: d9dbb1cfcd80976dce41919f59c7d6424bec600e

New changelog entries:
  * SECURITY UPDATE: denial of service in ldb_wildcard_compare function
    - debian/patches/CVE-2015-3223.patch: handle empty strings and
      embedded zeros in lib/ldb/common/ldb_match.c.
    - CVE-2015-3223
  * SECURITY UPDATE: file-access restrictions bypass via symlink
    - debian/patches/CVE-2015-5252.patch: validate matching component in
      source3/smbd/vfs.c.
    - CVE-2015-5252
  * SECURITY UPDATE: man-in-the-middle attack via encrypted-to-unencrypted
    downgrade
    - debian/patches/CVE-2015-5296.patch: force signing in
      libcli/smb/smbXcli_base.c, source3/libsmb/clidfs.c,
      source3/libsmb/libsmb_server.c.
    - CVE-2015-5296
  * SECURITY UPDATE: snapshot access via shadow copy directory
    - debian/patches/CVE-2015-5299.patch: fix missing access checks in
      source3/modules/vfs_shadow_copy2.c.
    - CVE-2015-5299
  * SECURITY UPDATE: information leak via incorrect string length handling
    - debian/patches/CVE-2015-5330.patch: fix string length handling in
      lib/ldb/common/ldb_dn.c, lib/util/charset/charset.h,
      lib/util/charset/codepoints.c, lib/util/charset/util_str.c,
      lib/util/charset/util_unistr.c.
    - CVE-2015-5330
  * SECURITY UPDATE: LDAP server denial of service
    - debian/patches/CVE-2015-7540.patch: check returns in lib/util/asn1.c,
      libcli/ldap/ldap_message.c, libcli/ldap/ldap_message.h,
      source4/libcli/ldap/ldap_controls.c.
    - CVE-2015-7540
  * SECURITY UPDATE: access restrictions bypass in machine account creation
    - debian/patches/CVE-2015-8467.patch: restrict swapping between account
      types in source4/dsdb/samdb/ldb_modules/samldb.c.
    - CVE-2015-8467
  * debian/control: bump libldb-dev Build-Depends to security update
    version.

d9dbb1c... by Sebastien Bacher on 2015-04-03

Import patches-unapplied version 2:4.1.13+dfsg-4ubuntu3 to ubuntu/vivid-proposed

Imported using git-ubuntu import.

Changelog parent: e1b9833f1d90af3c9cc8e14306871439b662c228

New changelog entries:
  * debian/patches/git_timeout_client_error.patch:
    - don't let smb mounts timeout that leads to errors when trying to
      reuse a mount after idling for a while in e.g nautilus (lp: #310932)

e1b9833... by Marc Deslauriers on 2015-02-23

Import patches-unapplied version 2:4.1.13+dfsg-4ubuntu2 to ubuntu/vivid-proposed

Imported using git-ubuntu import.

Changelog parent: fa4a6af0c808ace3dfa00536c1124a9c108fe664

New changelog entries:
  * SECURITY UPDATE: code execution vulnerability in smbd daemon
    - debian/patches/CVE-2015-0240.patch: don't call talloc_free on an
      uninitialized pointer and don't dereference a NULL pointer in
      source3/rpc_server/netlogon/srv_netlog_nt.c.
    - CVE-2015-0240

fa4a6af... by Gianfranco Costamagna on 2015-01-21

Import patches-unapplied version 2:4.1.13+dfsg-4ubuntu1 to ubuntu/vivid-proposed

Imported using git-ubuntu import.

Changelog parent: dd34c6516f8429104d1c5b80bf62094e7148b6f3

New changelog entries:
  * Merge from Debian unstable. Remaining changes:
    + debian/VERSION.patch: Update vendor string to "Ubuntu".
    + debian/smb.conf;
      - Add "(Samba, Ubuntu)" to server string.
      - Comment out the default [homes] share, and add a comment about "valid users = %s"
         to show users how to restrict access to \\server\username to only username.
    + debian/samba-common.config:
      - Do not change prioritiy to high if dhclient3 is installed.
    + debian/control:
      - Don't build against or suggest ctdb and tdb.
    + debian/rules:
      - Drop explicit configuration options for ctdb and tdb.
    + Add ufw integration:
      - Created debian/samba.ufw.profile:
      - debian/rules, debian/samba.install: install profile
    + Add apport hook:
      - Created debian/source_samba.py.
      - debian/rules, debia/samb-common-bin.install: install hook.
    + debian/samba.logrotate: use service command to reload (send SIGHUP) the main
      processes such that it works under both upstart and systemd.
    + debian/samba-common.dirs: Move /var/lib/samba/private from samba.dirs.
    + d/p/krb_zero_cursor.patch - apply proposed-upstream fix for
      pam_winbind krb5_ccache_type=FILE failure (LP: #1310919)
    + debian/patches/CVE-2014-8143.patch fix CVE-2014-8143.

dd34c65... by Jelmer Vernooij on 2014-12-10

Import patches-unapplied version 2:4.1.13+dfsg-4 to debian/sid

Imported using git-ubuntu import.

Changelog parent: b07abe5f2ac5f544842b6c849e0c9adbba51d9fd

New changelog entries:
  * Revert previous patch, since ldb has an active module version check.
    Instead, just depend on ldb 1.1.18. Closes: #771991

b07abe5... by Jelmer Vernooij on 2014-12-04

Import patches-unapplied version 2:4.1.13+dfsg-3 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 88c404ec0fd29bd6e7ed6ebd18ddccb6e3a0c10a

New changelog entries:
  * Update debian/rules to allow support for multiple upstream ldb
    versions, when verified. Closes: #771991

88c404e... by Ivo De Decker <email address hidden> on 2014-10-24

Import patches-unapplied version 2:4.1.13+dfsg-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: d2c49b17b8426b432f5aa2b0a3e56fe381d19fd1

New changelog entries:
  * Mask /etc/init.d/samba init script for systemd. This should make systemd
    ignore the samba init script. Thanks to Michael Biebl for the suggestion.
    Closes: #740942
  * Disable samba init script on upgrade from wheezy to jessie.
    Thanks again to Michael Biebl for the report.
    Closes: #766690

d2c49b1... by Ivo De Decker <email address hidden> on 2014-10-21

Import patches-unapplied version 2:4.1.13+dfsg-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 469563cf8e9fdf8c9e3aa22395b3dc6b8621dcab

New changelog entries:
  * New upstream release.
  * Bump standards version to 3.9.6 (no changes).

469563c... by Jelmer Vernooij on 2014-09-07

Import patches-unapplied version 2:4.1.11+dfsg-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 908009ad30a14cecdaaf7d5f66f1494273686174

New changelog entries:
  * Updated Italian translation. Thanks Luca Monducci. Closes: #760743
  * Use HTTP in watch file, as ftp.samba.org is not working reliably for
    me.
  * Use Excluded-Files in debian/copyright for DFSG-nonfree files.
  * Update Dutch translation. Thanks Frans Spiesschaert. Closes: #763650

908009a... by Jelmer Vernooij on 2014-08-03

Import patches-unapplied version 2:4.1.11+dfsg-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: b6bc6dce0acd461bb748ab7969f65ebcdf6d1490

New changelog entries:
  * New upstream release. Fixes:
   + CVE-2014-3560: Remote code execution in nmbd. Closes: #756759