Change log for samba package in Ubuntu
451 → 490 of 640 results | First • Previous • Next • Last |
Superseded in edgy-security |
samba (3.0.22-1ubuntu4.3) edgy-security; urgency=low * SECURITY UPDATE: buffer overrun in nmbd when processing crafted GETDC mailslot requests * debian/patches/security_CVE-2007-4572.patch: check return values and sizeof strings in charcnv.c, ntlmssp_parse.c, nmbd_processlogon.c * SECURITY UPDATE: arbitrary code execution in nmbd when configured as a WINS server when processing name registration and name query requests * debian/patches/security_CVE-2007-5398.patch: properly check len in nmbd_packets.c * References CVE-2007-4572 CVE-2007-5398 -- Jamie Strandboge <email address hidden> Wed, 14 Nov 2007 17:18:03 -0500
Superseded in dapper-security |
samba (3.0.22-1ubuntu3.4) dapper-security; urgency=low * SECURITY UPDATE: buffer overrun in nmbd when processing crafted GETDC mailslot requests * debian/patches/security_CVE-2007-4572.patch: check return values and sizeof strings in charcnv.c, ntlmssp_parse.c, nmbd_processlogon.c * SECURITY UPDATE: arbitrary code execution in nmbd when configured as a WINS server when processing name registration and name query requests * debian/patches/security_CVE-2007-5398.patch: properly check len in nmbd_packets.c * References CVE-2007-4572 CVE-2007-5398 -- Jamie Strandboge <email address hidden> Wed, 14 Nov 2007 17:13:17 -0500
samba (3.0.26a-1ubuntu2) gutsy; urgency=low * debian/patches/chgpasswd.patch: - Also set the locale to 'C' when using PAM for password changes, since the PAM conversation is equally affected by PAM l10n support (LP: #139265). -- Steve Langasek <email address hidden> Tue, 02 Oct 2007 13:54:23 -0700
Superseded in gutsy-release |
samba (3.0.26a-1ubuntu1) gutsy; urgency=low * debian/patches/chgpasswd.patch: - Set locale to 'C' while calling the passwd change program * Merge from debian unstable, remaining changes: * debian/patches/VERSION.patch: - set SAMBA_VERSION_VENDOR_SUFFIX to Ubuntu * debian/control: - Remove typehandling (not used in Ubuntu) * debian/samba-common.templates: - Set default workgroup to MSHOME * debian/rules: - Remove type-handling. * debian/samba.init: - Make sure $PIDDIR exists (/var/run is a tmpfs) - Ubuntu's log_progress_msg is a no-op, so to avoid confusion, don't say specifically which daemons we're handling. (LP #25803) * debian/smb.conf: - Add "(Samba, Ubuntu)" to server string. - Change the (commented-out) "printer admin" example to use "@lpadmin" instead of "@ntadmin", since the lpadmin group is used for spool admin. - Comment out the default [homes] shares and add more verbose comments to explain what they do and how they work (LP #27608). Also, add a comment about "valid users = %S" to show users how to restrict access to \\server\username to only username. * debian/panic-action: - Bail out if there's no "mail" command. - Alter the panic-action script to link to the samba bug reporting page on Launchpad. * debian/samba-common.config: - do not change priority to HIGH if dhclient3 is installed
Superseded in gutsy-release |
samba (3.0.25b-1ubuntu4) gutsy; urgency=low * debian/rules: - add error-handler=true to samba dh_installinit. Fixes LP: #85194. -- Mathias Gug <email address hidden> Fri, 17 Aug 2007 12:11:45 -0400
Superseded in gutsy-release |
samba (3.0.25b-1ubuntu3) gutsy; urgency=low * Build depend on libacl1-dev on lpia. -- Matthias Klose <email address hidden> Tue, 14 Aug 2007 10:26:58 +0000
Superseded in gutsy-release |
samba (3.0.25b-1ubuntu2) gutsy; urgency=low * debian/smb.conf: - Fix 'valid users =' option in smb.conf. LP: #131419. -- Mathias Gug <email address hidden> Thu, 09 Aug 2007 21:39:54 -0400
Superseded in gutsy-release |
samba (3.0.25b-1ubuntu1) gutsy; urgency=low * Dropped patches: + debian/patches/ubuntu-auxsrc.patch: - ntlm_auth_proto.h, smbadduser, gen-8bit-gap.sh are all autogenerated at build time. * Merge from debian unstable, remaining changes: * debian/patches/VERSION.patch: - set SAMBA_VERSION_VENDOR_SUFFIX to Ubuntu * debian/control: - Remove typehandling (not used in Ubuntu) - Added Conflicts/Replaces on python2.4-samba. * debian/samba-common.templates: - Set default workgroup to MSHOME * debian/rules: - Remove type-handling. * debian/samba.init: - Make sure $PIDDIR exists (/var/run is a tmpfs) - Ubuntu's log_progress_msg is a no-op, so to avoid confusion, don't say specifically which daemons we're handling. (LP #25803) * debian/smb.conf: - Add "(Samba, Ubuntu)" to server string. - Change the (commented-out) "printer admin" example to use "@lpadmin" instead of "@ntadmin", since the lpadmin group is used for spool admin. - Comment out the default [homes] shares and add more verbose comments to explain what they do and how they work (LP #27608). Also, add a comment about "valid users = %S" to show users how to restrict access to \\server\username to only username. * debian/panic-action: - Bail out if there's no "mail" command. - Alter the panic-action script to link to the samba bug reporting page on Launchpad. * debian/samba-common.config: - do not change priority to HIGH if dhclient3 is installed
samba (3.0.24-2ubuntu1.2) feisty-security; urgency=low * SECURITY UPDATE: regression in "force group" configured shares. * security-regression_fix-force-group.patch: upstream fixes. * References http://bugs.debian.org/424629 -- Kees Cook <email address hidden> Tue, 22 May 2007 09:23:08 -0700
Superseded in gutsy-release |
samba (3.0.25-1ubuntu1) gutsy; urgency=low * Merge from debian unstable, remaining changes: * debian/smb.conf: - Do not show the version number by default - Comment out the default [homes] shares and add more verbose comments to explain what they do and how they work (closes: launchpad.net/27608) - Add a "valid users = %S" stanza to the commented-out [homes] section, to show users how to restrict access to \\server\username to only username. - Change the (commented-out) "printer admin" example to use "@lpadmin" instead of "@ntadmin", since the lpadmin group is used for spool admin. * debian/panic-action: - Alter the panic-action script to encourage users to report their bugs in Ubuntu packages to Ubuntu, rather than reporting to Debian. Modify text to more closely match the Debian script * debian/samba-common.templates: - Set default workgroup to MSHOME * debian/control: - remove typehandling - add update-inetd to Depends * debian/patches/VERSION.patch: - set SAMBA_VERSION_VENDOR_SUFFIX to Ubuntu * debian/samba-common.config: - do not change priority to HIGH if dhclient3 is installed * debian/samba.init: - use of PIDDIR instead of hardcoding it - Munge our init script to deal with the fact that our implementation (or lack thereof) of log_daemon_msg and log_progress_msg differs from Debian's implementation of the same (Ubuntu #19691) * debian/rules: - remove type-handling - properly clean on make clean - do not install mount.cifs and umount.cifs as suid * debian/patches/ubuntu-auxsrc.patch: - some auxilliary sources (undocumented in previous changelogs)
Superseded in feisty-security |
samba (3.0.24-2ubuntu1.1) feisty-security; urgency=low * SECURITY UPDATE: local priv escalation, remote heap overflows, remote command execution. * security_local-sid-translation-priv-elevation.patch: upstream fixes (CVE-2007-2444) * security_ndr-heap-overflows.patch: upstream fixes (CVE-2007-2446) * security_remote-command-execution.patch: upstream fixed (CVE-2007-2447) -- Kees Cook <email address hidden> Tue, 15 May 2007 15:28:23 -0700
samba (3.0.22-1ubuntu4.2) edgy-security; urgency=low * SECURITY UPDATE: remote heap overflows, remote command execution. * security_ndr-heap-overflows.patch: upstream fixes (CVE-2007-2446) * security_remote-command-execution.patch: upstream fixed (CVE-2007-2447) -- Kees Cook <email address hidden> Tue, 15 May 2007 15:28:41 -0700
samba (3.0.22-1ubuntu3.3) dapper-security; urgency=low * SECURITY UPDATE: remote heap overflows, remote command execution. * security_ndr-heap-overflows.patch: upstream fixes (CVE-2007-2446) * security_remote-command-execution.patch: upstream fixed (CVE-2007-2447) -- Kees Cook <email address hidden> Tue, 15 May 2007 15:28:55 -0700
Superseded in gutsy-release |
samba (3.0.24-6ubuntu1) gutsy; urgency=low * Merge from debian unstable, remaining changes: * debian/smb.conf: - Do not show the version number by default - Comment out the default [homes] shares and add more verbose comments to explain what they do and how they work (closes: launchpad.net/27608) - Add a "valid users = %S" stanza to the commented-out [homes] section, to show users how to restrict access to \\server\username to only username. - Change the (commented-out) "printer admin" example to use "@lpadmin" instead of "@ntadmin", since the lpadmin group is used for spool admin. * debian/panic-action: - Alter the panic-action script to encourage users to report their bugs in Ubuntu packages to Ubuntu, rather than reporting to Debian. Modify text to more closely match the Debian script * debian/samba-common.templates: - Set default workgroup to MSHOME * debian/control: - remove typehandling - add update-inetd to Depends * debian/patches/VERSION.patch: - set SAMBA_VERSION_VENDOR_SUFFIX to Ubuntu * debian/samba-common.config: - do not change priority to HIGH if dhclient3 is installed * debian/samba.init: - use of PIDDIR instead of hardcoding it - Munge our init script to deal with the fact that our implementation (or lack thereof) of log_daemon_msg and log_progress_msg differs from Debian's implementation of the same (Ubuntu #19691) * debian/rules: - remove type-handling - properly clean on make clean - do not install mount.cifs and umount.cifs as suid * debian/patches/ubuntu-auxsrc.patch: - some auxilliary sources (undocumented in previous changelogs)
samba (3.0.24-2ubuntu1) feisty; urgency=low * Merge from debian unstable, remaining changes: * debian/smb.conf: - Do not show the version number by default - Comment out the default [homes] shares and add more verbose comments to explain what they do and how they work (closes: launchpad.net/27608) - Add a "valid users = %S" stanza to the commented-out [homes] section, to show users how to restrict access to \\server\username to only username. - Change the (commented-out) "printer admin" example to use "@lpadmin" instead of "@ntadmin", since the lpadmin group is used for spool admin. * debian/panic-action: - Alter the panic-action script to encourage users to report their bugs in Ubuntu packages to Ubuntu, rather than reporting to Debian. Modify text to more closely match the Debian script * debian/samba-common.templates: - Set default workgroup to MSHOME * debian/control: - remove typehandling - add update-inetd to Depends * debian/patches/VERSION.patch: - set SAMBA_VERSION_VENDOR_SUFFIX to Ubuntu * debian/samba-common.config: - do not change priority to HIGH if dhclient3 is installed * debian/samba.init: - use of PIDDIR instead of hardcoding it - Munge our init script to deal with the fact that our implementation (or lack thereof) of log_daemon_msg and log_progress_msg differs from Debian's implementation of the same (Ubuntu #19691) * debian/rules: - remove type-handling - properly clean on make clean - do not install mount.cifs and umount.cifs as suid * debian/patches/ubuntu-auxsrc.patch: - some auxilliary sources (undocumented in previous changelogs) * Really drop debian/patches/ubuntu-fix-ldap.patch: - Fixed upstream, see Debian #274155
Superseded in edgy-security |
samba (3.0.22-1ubuntu4.1) edgy-security; urgency=low * SECURITY UPDATE: priv escalation via crafted AFS share filenames, denial of service when renaming a file in deferred open queue. * Add 'debian/patches/ubuntu-fix-open-loop.patch': fix infinite loop, taken from upstream patch. - CVE-2007-0452 * Add 'debian/patches/ubuntu-fix-afsacl.patch': fix format string overflow, taken from upstrem patch. - CVE-2007-0454 -- Kees Cook <email address hidden> Mon, 5 Feb 2007 15:43:09 -0800
Superseded in dapper-security |
samba (3.0.22-1ubuntu3.2) dapper-security; urgency=low * SECURITY UPDATE: priv escalation via crafted AFS share filenames, denial of service when renaming a file in deferred open queue. * Add 'debian/patches/ubuntu-fix-open-loop.patch': fix infinite loop, taken from upstream patch. - CVE-2007-0452 * Add 'debian/patches/ubuntu-fix-afsacl.patch': fix format string overflow, taken from upstrem patch. - CVE-2007-0454 -- Kees Cook <email address hidden> Mon, 5 Feb 2007 15:58:02 -0800
Obsolete in breezy-security |
samba (3.0.14a-6ubuntu1.2) breezy-security; urgency=low * SECURITY UPDATE: priv escalation via crafted AFS share filenames, denial of service when renaming a file in deferred open queue. * Add 'debian/patches/security-defer-dos.patch': fix infinite loop, taken from Debian patch. - CVE-2007-0452 * Add 'debian/patches/security-CVE-2007-0454.patch': fix format string overflow, taken from Debian patch. - CVE-2007-0454 -- Kees Cook <email address hidden> Mon, 5 Feb 2007 15:55:29 -0800
Superseded in feisty-release |
samba (3.0.23d-2ubuntu2) feisty; urgency=low * Rebuild for python2.5 as the default python version. -- Matthias Klose <email address hidden> Fri, 12 Jan 2007 13:18:25 +0000
Superseded in feisty-release |
samba (3.0.23d-2ubuntu1) feisty; urgency=low * Merge from debian unstable, remaining changes: * debian/smb.conf: - Do not show the version number by default - Comment out the default [homes] shares and add more verbose comments to explain what they do and how they work (closes: launchpad.net/27608) - Add a "valid users = %S" stanza to the commented-out [homes] section, to show users how to restrict access to \\server\username to only username. - Change the (commented-out) "printer admin" example to use "@lpadmin" instead of "@ntadmin", since the lpadmin group is used for spool admin. * debian/panic-action: - Alter the panic-action script to encourage users to report their bugs in Ubuntu packages to Ubuntu, rather than reporting to Debian. Modify text to more closely match the Debian script * debian/samba-common.templates: - Set default workgroup to MSHOME * debian/control: - remove typehandling - add update-inetd to Depends * debian/patches/VERSION.patch: - set SAMBA_VERSION_VENDOR_SUFFIX to Ubuntu * debian/samba-common.config: - do not change priority to HIGH if dhclient3 is installed * debian/samba.init: - use of PIDDIR instead of hardcoding it - Munge our init script to deal with the fact that our implementation (or lack thereof) of log_daemon_msg and log_progress_msg differs from Debian's implementation of the same (Ubuntu #19691) * debian/rules: - remove type-handling - properly clean on make clean - do not install mount.cifs and umount.cifs as suid * debian/patches/ubuntu-auxsrc.patch: - some auxilliary sources (undocumented in previous changelogs) * debian/patches/ubuntu-fix-ldap.patch: - fix LDAP backend, see Ubuntu #1905, Debian #274155
Superseded in feisty-release |
samba (3.0.23d-1ubuntu3) feisty; urgency=low * added depends on update-inetd -- Michael Vogt <email address hidden> Thu, 14 Dec 2006 18:59:14 +0100
Superseded in feisty-release |
samba (3.0.23d-1ubuntu2) feisty; urgency=low * Remove type-handling from build-deps, it's not in Ubuntu main. (It was already disabled in the rules file. -- Tollef Fog Heen <email address hidden> Tue, 12 Dec 2006 14:42:23 +0100
Superseded in feisty-release |
samba (3.0.23d-1ubuntu1) feisty; urgency=low * Merge from debian unstable. * Drop python2.4-samba, replace with python-samba. Added Conflicts/Replaces on python2.4-samba * Drop track-connection-dos.patch, ubuntu-winbind-panic.patch, ubuntu-fix-ldap.patch, ubuntu-setlocale.patch, ubuntu-setlocale-fixes.patch * Remaining Ubuntu changes: - Revert Debian's installation of mount.cifs and umount.cifs as suid - Comment out the default [homes] shares and add more verbose comments to explain what they do and how they work (closes: launchpad.net/27608) - Add a "valid users = %S" stanza to the commented-out [homes] section, to show users how to restrict access to \\server\username to only username. - Change the (commented-out) "printer admin" example to use "@lpadmin" instead of "@ntadmin", since the lpadmin group is used for spool admin. - Alter the panic-action script to encourage users to report their bugs in Ubuntu packages to Ubuntu, rather than reporting to Debian. Modify text to more closely match the Debian script - Munge our init script to deal with the fact that our implementation (or lack thereof) of log_daemon_msg and log_progress_msg differs from Debian's implementation of the same (Ubuntu #19691) - Kept ubuntu-auxsrc.patch: some auxilliary sources (undocumented in previous changelogs) - Set default workgroup to MSHOME
Superseded in dapper-security |
samba (3.0.22-1ubuntu3.1) dapper-security; urgency=low * SECURITY UPDATE: Remote DoS. * Add debian/patches/track_connection_dos.patch: - Limit active connections to 2048 to avoid DoS due to unbound array growing when tracking active connections. - CVE-2006-3403 -- Martin Pitt <email address hidden> Tue, 11 Jul 2006 10:12:54 +0000
Superseded in breezy-security |
samba (3.0.14a-6ubuntu1.1) breezy-security; urgency=low * SECURITY UPDATE: Remote DoS. * Add debian/patches/track_connection_dos.patch: - Limit active connections to 2048 to avoid DoS due to unbound array growing when tracking active connections. - CVE-2006-3403 * Renamed debian/patches/smbclient-vfat-loop.patch to smbclient-vfat-loop1.patch to fix patch ordering and FTBFS. -- Martin Pitt <email address hidden> Tue, 11 Jul 2006 10:41:02 +0000
Obsolete in hoary-security |
samba (3.0.10-1ubuntu3.1) hoary-security; urgency=low * SECURITY UPDATE: Remote DoS. * Add debian/patches/track_connection_dos.patch: - Limit active connections to 2048 to avoid DoS due to unbound array growing when tracking active connections. - CVE-2006-3403 -- Martin Pitt <email address hidden> Tue, 11 Jul 2006 10:06:15 +0000
samba (3.0.22-1ubuntu4) edgy; urgency=low * SECURITY UPDATE: Remote DoS. * Add debian/patches/track_connection_dos.patch: - Limit active connections to 2048 to avoid DoS due to unbound array growing when tracking active connections. - CVE-2006-3403 -- Martin Pitt <email address hidden> Tue, 11 Jul 2006 13:14:27 +0200
samba (3.0.22-1ubuntu3) dapper; urgency=low * Config file changes only in this upload; no destabilising code changes. * Comment out the default [homes] shares and add more verbose comments to explain what they do and how they work (closes: launchpad.net/27608) * Add a "valid users = %S" stanza to the commented-out [homes] section, to show users how to restrict access to \\server\username to only username. * Change the (commented-out) "printer admin" example to use "@lpadmin" instead of "@ntadmin", since the lpadmin group is used for spool admin. -- Adam Conrad <email address hidden> Wed, 17 May 2006 18:29:00 +1000
Superseded in dapper-release |
samba (3.0.22-1ubuntu2) dapper; urgency=low * After much faff about fixing this properly and getting fixes submitted upstream (some of which has happened), I've concluded that getting every case_tables usage in the code nailed down before release just isn't going to happen, so applying a more global bandaid (ubuntu-setlocale-fixes.patch) instead to stop the SEGVs completely (closes: launchpad.net/{39990,39484,39956}) * Snag a patch from upstream SVN to stop winbindd from panicking when not joined to a domain (closes: launchpad.net/32614) * Mangle patch fuzz for previous patch to make it apply cleanly. -- Adam Conrad <email address hidden> Tue, 16 May 2006 22:36:17 +1000
Superseded in dapper-release |
samba (3.0.22-1ubuntu1) dapper; urgency=low * Sync with Debian's new upstream (UVF exception granted by mdz) to resolve the information disclosure vuln reported in CVE-2006-1059 * Make the panic-action script check for 'mail' before it goes about trying to backtrace crashes and mail to root (launchpad.net/32987) * Include patch from upstream to purge setlocale calls from the client library, so we don't break the desktop locale (launchpad.net/28603) * Make the samba and winbind init scripts more robust in the face of a tmpfs /var/run, creating directories as we go (launchpad.net/33389) * Fix up syntax error in the default config file (launchpad.net/37965)
Superseded in dapper-release |
samba (3.0.21c-1ubuntu2) dapper; urgency=low * SECURITY UPDATE: Password leakage. * Add debian/patches/winbind-cleartext-password.patch: - Do not expose the machine account credentials in winbind log files. - Patch taken from stable version 3.0.22. * References: CVE-2006-1059 http://us1.samba.org/samba/security/CAN-2006-1059.html -- Martin Pitt <email address hidden> Tue, 4 Apr 2006 08:47:48 +0000
Superseded in dapper-release |
samba (3.0.21c-1ubuntu1) dapper; urgency=low * Merge with Debian for new upstream bugfixes, UVF exception by mdz. * Remove dapper->dapper upgrade hack, which should be a non-issue now.
Superseded in dapper-release |
samba (3.0.21b-1ubuntu2) dapper; urgency=low * Due to a misplaced file in older samba packages, temporarily make python2.4-samba Replace samba for smooth dapper->dapper upgrades. -- Adam Conrad <email address hidden> Thu, 23 Feb 2006 20:33:34 +1100
Superseded in dapper-release |
samba (3.0.21b-1ubuntu1) dapper; urgency=low * Sync with Debian's new upstream release (UVF exception granted by Colin), which fixes several nasty crashes, as well as a vicious memory leak in winbind that can OOM a machine within days (Closes: launchpad.net/32440) * Resolve some fairly scary merge conflicts from Debian's switch to quilt. * Revert Debian's installation of mount.cifs and umount.cifs as suid until Martin Pitt and I have had a chance to review/discuss this for Ubuntu.
samba (3.0.21a-1ubuntu1) dapper; urgency=low * Resyncronise with Debian, resolving many merge conflicts (#20710) * Alter the panic-action script to encourage users to report their bugs in Ubuntu packages to Ubuntu, rather than reporting to Debian. * Munge our init script to deal with the fact that our implementation (or lack thereof) of log_daemon_msg and log_progress_msg differs from Debian's implementation of the same (Ubuntu #19691) * Enable the idmap_rid.so backend plugin for winbind (Ubuntu #12797) -- Adam Conrad <email address hidden> Tue, 3 Jan 2006 13:56:26 +1000
Superseded in dapper-release |
samba (3.0.20b-2ubuntu1) dapper; urgency=low * Resynchronise with Debian. -- Michael Vogt <email address hidden> Mon, 14 Nov 2005 11:11:28 +0100
Obsolete in breezy-release |
samba (3.0.14a-6ubuntu1) breezy; urgency=low * Resynchronise with Debian, resolving merge conflicts (#12360) -- Adam Conrad <email address hidden> Thu, 21 Jul 2005 17:53:23 +0000
Obsolete in hoary-release |
samba (3.0.10-1ubuntu3) hoary; urgency=low * debian/patches/krb.patch: - patch to use kerberos by default if the authentication succeeds, but fall back to the normal methods if not. Fix the kerberos support for gnomevfs (Hoary: #7357). -- Sebastien Bacher <email address hidden> Tue, 22 Mar 2005 12:43:19 +0100
samba (3.0.7-1ubuntu6.3) warty-security; urgency=low * SECURITY UPDATE: fix several potential integer and buffer overflows * Added patch ubuntu-CAN-2004-1154.patch: - introduce wrapper macros for dangerous functions (malloc(), malloc() for arrays, strdup(), etc.) which do safety checking - based on official 3.0.9 patch, ported to 3.0.7 * References: CAN-2004-1154 http://us1.samba.org/samba/security/CAN-2004-1154.html -- Martin Pitt <email address hidden> Fri, 17 Dec 2004 14:59:44 +0100
Obsolete in warty-release |
samba (3.0.7-1ubuntu6) warty; urgency=low * Added patch prefer_device_uri: change smbspool to prefer DEVICE_URI over argv[0] to make printing work with the CUPS changes for CAN-2004-0923 (this removed authentication tokens from argv[0]). (Warty bug #2389) -- Martin Pitt <email address hidden> Fri, 15 Oct 2004 12:31:58 +0200
451 → 490 of 640 results | First • Previous • Next • Last |