samba (2:4.3.3+dfsg-1ubuntu1) xenial; urgency=medium
* Merge with Debian; remaining changes:
+ debian/VERSION.patch: Update vendor string to "Ubuntu".
+ debian/smb.conf;
- Add "(Samba, Ubuntu)" to server string.
- Comment out the default [homes] share, and add a comment about "valid users = %s"
to show users how to restrict access to \\server\username to only username.
+ debian/samba-common.config:
- Do not change prioritiy to high if dhclient3 is installed.
+ debian/control:
- Switch build depends from transitional libgnutsl28-dev to libgnutls-dev
+ Add ufw integration:
- Created debian/samba.ufw.profile:
- debian/rules, debian/samba.install: install profile
+ Add apport hook:
- Created debian/source_samba.py.
- debian/rules, debia/samb-common-bin.install: install hook.
+ d/p/krb_zero_cursor.patch - apply proposed-upstream fix for
pam_winbind krb5_ccache_type=FILE failure (LP: #1310919)
samba (2:4.3.3+dfsg-1) unstable; urgency=medium
* New upstream release. Closes: #808133.
+ Drop subunit dependency, no longer used.
+ Drop ntdb dependencies, no longer used.
+ Fixes:
- CVE-2015-5252: Insufficient symlink verification in smbd
- CVE-2015-5296: Samba client requesting encryption vulnerable
downgrade attack
- CVE-2015-5299: Missing access control check in shadow copy code
- CVE-2015-7540: Remote DoS in Samba (AD) LDAP server
- CVE-2015-8467: Denial of service attack against Windows Active Directory
server
- CVE-2015-3223: Denial of service in Samba Active Directory server
- CVE-2015-5330: Remote memory read in Samba LDAP server
* Remove libpam-smbpasswd, which is broken and slated for removal
upstream. Closes: #799840
* Remove lib/zlib/contrib/dotzlib/DotZLib.chm from excluded files in
copyright; no longer shipped upstream.
* Remove wins2dns.awk example script.
* Remove the samba-doc package, and move examples files from it to
relevant other packages. Closes: #769385
* Move samba-dsdb-modules back from Depends to Recommends, as using
Samba as a standalone server doesn't require the dsdb modules.
samba (2:4.3.0+dfsg-2) experimental; urgency=medium
* Re-enable cluster support.
+ Build samba-cluster-support as built-in library, since its dependencies
are broken.
samba (2:4.3.0+dfsg-1) experimental; urgency=medium
* Fix watch file.
* New upstream release.
* Drop no_wrapper patch: applied upstream.
* Drop patch ctdb_sockpath.patch: applied upstream.
* Drop Fix-CTDB-build-with-PMDA patch: applied upstream.
samba (2:4.2.1+dfsg-1) experimental; urgency=medium
[ Jelmer Vernooij ]
* New upstream release.
+ Drop patch do-not-install-smbclient4-and-nmbclient4: applied upstream.
+ Drop patch
bug_598313_upstream_7499-nss_wins-dont-clobber-daemons-logs.patch:
present upstream.
+ Refresh patch 26_heimdal_compat.26_heimdal_compat.
+ Add build-dependency on libarchive-dev.
* Drop samba_bug_11077_torturetest.patch: applied upstream.
* Drop dependency on ctdb - now bundled with Samba.
* Use bundled Heimdal as the system Heimdal doesn't contain the
changes required for Samba.
* Add patch heimdal-rfc3454.txt: patch in truncated rfc3454.txt for
building bundled heimdal.
* Drop patches 25_heimdal_api_changes and 26_heimdal_compat.
* Disable cluster support; it breaks the build.
* Add patch no_wrapper: avoid dependencies on
{nss,uid,socket}_wrapper.
* Move some libraries around.
* Move ownership of var/lib/samba and var/lib/samba/private to samba-
common, remove obsolete samba4.dirs. Closes: #793866
* Remove ctdb-tests and ctdb-pcp-pmda packages as they contain problems
and unclear what they are useful for, now ctdb now longer provides
an external API.
[ Mathieu Parent ]
* Merge ctdb source package
- initial merge
- libctdb-dev has been dropped
- ctdb-dbg renamed to ctdb-tests, debug files moved to samba-dbg
- ctdb-tests depends on python
* Fix CTDB socketpath parsing
* Fix CTDB build with PMDA
* ctdb: Fix privacy breach on google.com (from documentation)
-- Marc Deslauriers <email address hidden> Wed, 06 Jan 2016 07:41:39 -0500