samba (2:4.10.0+dfsg-0ubuntu2) disco; urgency=medium
* SECURITY UPDATE: world writable files in Samba AD DC private/ dir
- debian/patches/CVE-2019-3870-1.patch: extend smbd tests to check for
umask being overwritten in python/samba/tests/ntacls_backup.py,
python/samba/tests/posixacl.py, python/samba/tests/smbd_base.py,
selftest/knownfail.d/umask-leak.
- debian/patches/CVE-2019-3870-2.patch: add test to check
file-permissions are correct after provision in
selftest/knownfail.d/provision_fileperms, source4/selftest/tests.py,
source4/setup/tests/provision_fileperms.sh.
- debian/patches/CVE-2019-3870-3.patch: include tests to show the
outside umask has no impact in python/samba/tests/ntacls_backup.py,
python/samba/tests/smbd_base.py, selftest/knownfail.d/pymkdir-umask.
- debian/patches/CVE-2019-3870-4.patch: move umask manipuations as
close as possible to users in source3/smbd/pysmbd.c,
selftest/knownfail.d/provision_fileperms,
selftest/knownfail.d/umask-leak.
- debian/patches/CVE-2019-3870-5.patch: ensure a zero umask is set for
smbd.mkdir() in selftest/knownfail.d/pymkdir-umask,
source3/smbd/pysmbd.c.
- CVE-2019-3870
* SECURITY UPDATE: save registry file outside share as unprivileged user
- debian/patches/CVE-2019-3880.patch: remove implementations of
SaveKey/RestoreKey in source3/rpc_server/winreg/srv_winreg_nt.c.
- CVE-2019-3880
-- Marc Deslauriers <email address hidden> Mon, 08 Apr 2019 10:32:30 -0400