samba 2:3.4.7~dfsg-1ubuntu3.13 source package in Ubuntu

Changelog

samba (2:3.4.7~dfsg-1ubuntu3.13) lucid-security; urgency=low

  * SECURITY UPDATE: file restrictions bypass via alternate data streams
    - debian/patches/CVE-2013-4475.patch: properly check base file access
      in source3/smbd/open.c.
    - CVE-2013-4475
  * SECURITY UPDATE: pam_winbind access restriction bypass via invalid
    group names
    - debian/patches/CVE-2012-6150.patch: ensure valid groups in
      nsswitch/pam_winbind.c.
    - CVE-2012-6150
  * SECURITY UPDATE: arbitrary code execution via incorrect DCE-RPC
    fragment length field checking
    - debian/patches/CVE-2013-4408.patch: apply massive upstream fix to
      lib/async_req/async_sock.c, libcli/util/ntstatus.h,
      source3/lib/netapi/{group,localgroup,user}.c,
      source3/libnet/libnet_join.c, source3/libsmb/nterr.c,
      source3/rpc_client/{cli_lsarpc,cli_pipe}.c,
      source3/rpc_server/{srv_pipe,srv_pipe_hnd}.c,
      source3/rpcclient/cmd_samr.c, source3/smbd/lanman.c,
      source3/utils/{net_rpc,net_rpc_join}.c,
      source3/winbindd/winbindd_rpc.c,
      source4/libcli/util/{clilsa,nterr}.c,
      source4/libnet/{groupinfo,groupman,libnet_join,libnet_lookup,
      libnet_passwd,userinfo,userman}.c,
      source4/librpc/rpc/{dcerpc,dcerpc_smb,dcerpc_smb2,dcerpc_sock}.c,
      source4/winbind/wb_async_helpers.c.
    - CVE-2013-4408
 -- Marc Deslauriers <email address hidden>   Mon, 09 Dec 2013 12:41:25 -0500

Upload details

Uploaded by:
Marc Deslauriers on 2013-12-09
Uploaded to:
Lucid
Original maintainer:
Ubuntu Developers
Architectures:
any
Section:
net
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
samba_3.4.7~dfsg.orig.tar.bz2 29.7 MiB eaaa692ac930e81206699eb6b58c6f1e6357a1b86d031ae1b34d400b024a526e
samba_3.4.7~dfsg-1ubuntu3.13.debian.tar.gz 609.4 KiB b4f085ab9859bd8b823c0ee988d777c425a0ea02b44a1c9cb0e0b545b1b7e0c3
samba_3.4.7~dfsg-1ubuntu3.13.dsc 2.8 KiB c5e080c0a10aae39d2006d3c38a9fa8e9d0e85f1e175a7d8f009301668070961

View changes file

Binary packages built by this source

libpam-smbpass: No summary available for libpam-smbpass in ubuntu lucid.

No description available for libpam-smbpass in ubuntu lucid.

libsmbclient: No summary available for libsmbclient in ubuntu lucid.

No description available for libsmbclient in ubuntu lucid.

libsmbclient-dev: No summary available for libsmbclient-dev in ubuntu lucid.

No description available for libsmbclient-dev in ubuntu lucid.

libwbclient0: No summary available for libwbclient0 in ubuntu lucid.

No description available for libwbclient0 in ubuntu lucid.

samba: No summary available for samba in ubuntu lucid.

No description available for samba in ubuntu lucid.

samba-common: No summary available for samba-common in ubuntu lucid.

No description available for samba-common in ubuntu lucid.

samba-common-bin: No summary available for samba-common-bin in ubuntu lucid.

No description available for samba-common-bin in ubuntu lucid.

samba-dbg: No summary available for samba-dbg in ubuntu lucid.

No description available for samba-dbg in ubuntu lucid.

samba-doc: No summary available for samba-doc in ubuntu lucid.

No description available for samba-doc in ubuntu lucid.

samba-doc-pdf: No summary available for samba-doc-pdf in ubuntu lucid.

No description available for samba-doc-pdf in ubuntu lucid.

samba-tools: No summary available for samba-tools in ubuntu lucid.

No description available for samba-tools in ubuntu lucid.

smbclient: No summary available for smbclient in ubuntu lucid.

No description available for smbclient in ubuntu lucid.

smbfs: No summary available for smbfs in ubuntu lucid.

No description available for smbfs in ubuntu lucid.

swat: No summary available for swat in ubuntu lucid.

No description available for swat in ubuntu lucid.

winbind: No summary available for winbind in ubuntu lucid.

No description available for winbind in ubuntu lucid.