Format: 1.8 Date: Thu, 01 Oct 2009 08:39:00 -0400 Source: samba Binary: samba samba-common samba-tools smbclient swat samba-doc samba-doc-pdf smbfs libpam-smbpass libsmbclient libsmbclient-dev winbind samba-dbg libwbclient0 Architecture: hppa_translations hppa Version: 2:3.2.3-1ubuntu3.6 Distribution: intrepid Urgency: low Maintainer: Ubuntu/hppa Build Daemon Changed-By: Marc Deslauriers Description: libpam-smbpass - pluggable authentication module for SMB/CIFS password database libsmbclient - shared library that allows applications to talk to SMB/CIFS serve libsmbclient-dev - libsmbclient static libraries and headers libwbclient0 - client library for interfacing with winbind service samba - a LanManager-like file and printer server for Unix samba-common - Samba common files used by both the server and the client samba-dbg - Samba debugging symbols samba-doc - Samba documentation samba-doc-pdf - Samba documentation (PDF format) samba-tools - tools provided by the Samba suite smbclient - a LanManager-like simple client for Unix smbfs - mount and umount commands for the smbfs (for kernels >= than 2.2. swat - Samba Web Administration Tool winbind - service to resolve user and group information from Windows NT ser Changes: samba (2:3.2.3-1ubuntu3.6) intrepid-security; urgency=low . * SECURITY UPDATE: denial of service via string vulnerabilities in smbclient - debian/patches/security-CVE-2009-1886.patch: fix string format vulnerabilities in source/client/client.c. - CVE-2009-1886 * SECURITY UPDATE: access control list modification when dos filemode is enabled - debian/patches/security-CVE-2009-1888.patch: fix group checking in acl_group_override in source/smbd/posix_acls.c. - CVE-2009-1888 * SECURITY UPDATE: whole filesystem share via user with no home directory - debian/patches/security-CVE-2009-2813.patch: make sure home directory is set in source/param/loadparm.c, source/smbd/service.c. - CVE-2009-2813 * SECURITY UPDATE: credentials file disclosure and unauthorized usage via setuid mount.cifs - debian/patches/security-CVE-2009-2948.patch: don't open credentials file if user doesn't have permission, and don't print password when using verbose option in source/client/mount.cifs.c. - CVE-2009-2948 * SECURITY UPDATE: denial of service via unexpected oplock break notification reply - debian/patches/security-CVE-2009-2906.patch: track messages already processed in source/include/smb.h, source/smbd/process.c. - CVE-2009-2906 Checksums-Sha1: 3d19a0166380bdcf14bec8e4875709118dc0af85 160160 samba_3.2.3-1ubuntu3.6_hppa_translations.tar.gz 8f715fe0dac03f3d0ee6c28964967fe6826f57c4 4933100 samba_3.2.3-1ubuntu3.6_hppa.deb f19ea1ac04c23950d66d8a38d7eee2fb7910c505 3809220 samba-common_3.2.3-1ubuntu3.6_hppa.deb acb9a24cdb647682a002c1c023b9adf6a539c658 5827280 samba-tools_3.2.3-1ubuntu3.6_hppa.deb fe0271a95fb642e4fb852b6b3ac1357fffd537b0 7120040 smbclient_3.2.3-1ubuntu3.6_hppa.deb 2babf54ed0295b001be050d41fbe0fcc08e49523 1113698 swat_3.2.3-1ubuntu3.6_hppa.deb f087546925ef30e2fa025601171cf4336d98cb7b 1509534 smbfs_3.2.3-1ubuntu3.6_hppa.deb 2f10c42fef8df473f99a5ca6c0338140876fac3d 640798 libpam-smbpass_3.2.3-1ubuntu3.6_hppa.deb 12bb5a96593d6590533a5c4f3f6decd9616ebe1a 1385346 libsmbclient_3.2.3-1ubuntu3.6_hppa.deb eac0659bd9c9b7c3a70d998e042f929c30179940 2236728 libsmbclient-dev_3.2.3-1ubuntu3.6_hppa.deb 31ff5e466dd02740dd02f1f25ee7bb33a163f4aa 3329168 winbind_3.2.3-1ubuntu3.6_hppa.deb 8b32d14e9a417c2d1fcf424c1e462f25d03f174c 2066652 samba-dbg_3.2.3-1ubuntu3.6_hppa.deb 2f81212ab93e420e27ae3fc6afede340692832e1 89734 libwbclient0_3.2.3-1ubuntu3.6_hppa.deb Checksums-Sha256: c27ec5f24cf25c2bda8243d855bfcdbb7622cea441baa3d65d8aced531028024 160160 samba_3.2.3-1ubuntu3.6_hppa_translations.tar.gz de413ca97c631d1c7cfb28d064c6879db5ed730b01897d696e4a73230229c3d1 4933100 samba_3.2.3-1ubuntu3.6_hppa.deb 60ad90dc81b812e226a0591bdf8fff4384b7be3c2f3683b94db2f811a1eac03a 3809220 samba-common_3.2.3-1ubuntu3.6_hppa.deb 0d81f9ed15b4f0d8fc26419517f2045908a0124232d62d979bf0ed5b1649ee05 5827280 samba-tools_3.2.3-1ubuntu3.6_hppa.deb b83421fbde2928ce3d7e6036941a8cb6bb459d3854bb926aef3e89bceabfde57 7120040 smbclient_3.2.3-1ubuntu3.6_hppa.deb 544e08f1281b59c5996cea187736d4e7b7266a8595cab664cc9a26c9f99602fd 1113698 swat_3.2.3-1ubuntu3.6_hppa.deb e2c37f1ae87fff8abfd8df1c1f51b1ff0d85959c683ed910cf7e612a63f5cc6a 1509534 smbfs_3.2.3-1ubuntu3.6_hppa.deb 54d75be47a46189da9ea70f6ce67b95dad590db404222393a788f097ac79807c 640798 libpam-smbpass_3.2.3-1ubuntu3.6_hppa.deb e467a7c97c24f92ce0d5204eb7bd674fe6797295ed23297a1cf520a521321ac6 1385346 libsmbclient_3.2.3-1ubuntu3.6_hppa.deb 698acb345d999b5279652292dead3dbd792816355805f170231fb0947ecaa08a 2236728 libsmbclient-dev_3.2.3-1ubuntu3.6_hppa.deb 2c4104b9122384e3f6f211f815068d2f61c991f5f22082da95f0bac51fbb9ee7 3329168 winbind_3.2.3-1ubuntu3.6_hppa.deb c875e8b7b84f50a527834c4c765f72ffba3696d87cf8109b49d0bd5e845ffeaa 2066652 samba-dbg_3.2.3-1ubuntu3.6_hppa.deb 9cd2f71ffb2dbd0ad1c16b1387e4761377dc18b0756f0ebf0a377bbd21e77b72 89734 libwbclient0_3.2.3-1ubuntu3.6_hppa.deb Files: 047c44140aa6ce144ff54cb25890db0b 160160 raw-translations - samba_3.2.3-1ubuntu3.6_hppa_translations.tar.gz e86b83c057546c16dae86648abd8f03b 4933100 net optional samba_3.2.3-1ubuntu3.6_hppa.deb 05d1e65b0a7022b641d28a4bf36b8a93 3809220 net optional samba-common_3.2.3-1ubuntu3.6_hppa.deb 6fef525181c00bde6a4a383ce0b654cf 5827280 net optional samba-tools_3.2.3-1ubuntu3.6_hppa.deb 166719846f4273f6931e90564389b3aa 7120040 net optional smbclient_3.2.3-1ubuntu3.6_hppa.deb e29a48bb70b5eb68885be47c0b4d888a 1113698 net optional swat_3.2.3-1ubuntu3.6_hppa.deb de06add75d00d526ddd0936898df74e4 1509534 otherosfs optional smbfs_3.2.3-1ubuntu3.6_hppa.deb 42ffce908a94662a19010a54c86f0e9c 640798 admin extra libpam-smbpass_3.2.3-1ubuntu3.6_hppa.deb f6538c4ba48dff3cf7b6e02783989688 1385346 libs optional libsmbclient_3.2.3-1ubuntu3.6_hppa.deb bb110498a24051eae9db24ed600a010c 2236728 libdevel extra libsmbclient-dev_3.2.3-1ubuntu3.6_hppa.deb d12cce641104dee8ce8c60a4c4002b27 3329168 net optional winbind_3.2.3-1ubuntu3.6_hppa.deb fa5569d1f0ef3b19a76ffd5a2b5040d6 2066652 devel extra samba-dbg_3.2.3-1ubuntu3.6_hppa.deb afe56072ff628cf50eb8c3412e3d15c0 89734 libs optional libwbclient0_3.2.3-1ubuntu3.6_hppa.deb Original-Maintainer: Debian Samba Maintainers