Format: 1.8 Date: Mon, 09 Dec 2013 10:32:37 -0500 Source: samba Binary: samba samba-common-bin samba-common samba-tools smbclient swat samba-doc samba-doc-pdf libpam-smbpass libsmbclient libsmbclient-dev winbind libpam-winbind libnss-winbind samba-dbg libwbclient0 libwbclient-dev Architecture: armhf armhf_translations Version: 2:3.6.9-1ubuntu1.2 Distribution: raring Urgency: low Maintainer: Ubuntu/armhf Build Daemon Changed-By: Marc Deslauriers Description: libnss-winbind - Samba nameservice integration plugins libpam-smbpass - pluggable authentication module for Samba libpam-winbind - Windows domain authentication integration plugin libsmbclient - shared library for communication with SMB/CIFS servers libsmbclient-dev - development files for libsmbclient libwbclient-dev - Samba winbind client library - development files libwbclient0 - Samba winbind client library samba - SMB/CIFS file, print, and login server for Unix samba-common - common files used by both the Samba server and client samba-common-bin - common files used by both the Samba server and client samba-dbg - Samba debugging symbols samba-doc - Samba documentation samba-doc-pdf - Samba documentation in PDF format samba-tools - Samba testing utilities smbclient - command-line SMB/CIFS clients for Unix swat - Samba Web Administration Tool winbind - Samba nameservice integration server Changes: samba (2:3.6.9-1ubuntu1.2) raring-security; urgency=low . * SECURITY UPDATE: file restrictions bypass via alternate data streams - debian/patches/CVE-2013-4475.patch: properly check base file access in source3/smbd/open.c. - CVE-2013-4475 * SECURITY UPDATE: pam_winbind access restriction bypass via invalid group names - debian/patches/CVE-2012-6150.patch: ensure valid groups in nsswitch/pam_winbind.c. - CVE-2012-6150 * SECURITY UPDATE: arbitrary code execution via incorrect DCE-RPC fragment length field checking - debian/patches/CVE-2013-4408.patch: apply massive upstream fix to lib/async_req/async_sock.c, libcli/util/tstream.c, librpc/idl/dcerpc.idl, librpc/rpc/dcerpc_util.c, librpc/rpc/rpc_common.h, nsswitch/libwbclient/wbc_sid.c, nsswitch/wbinfo.c, source3/lib/netapi/{group,localgroup,user}.c, source3/lib/util_tsock.c, source3/libnet/libnet_join.c, source3/librpc/rpc/dcerpc_helpers.c, source3/rpc_client/{cli_lsarpc,cli_pipe}.c, source3/rpc_server/netlogon/srv_netlog_nt.c, source3/rpcclient/{cmd_lsarpc,cmd_samr}.c, source3/smbd/lanman.c, source3/utils/net_rpc.c, source3/utils/net_rpc_join.c, source3/winbindd/{wb_lookupsids,winbindd_msrpc,winbindd_rpc}.c, source4/libcli/util/clilsa.c, source4/libnet/{groupinfo,groupman, libnet_join,libnet_lookup,libnet_passwd,userinfo,userman}.c, source4/librpc/rpc/{dcerpc,dcerpc_smb,dcerpc_smb2,dcerpc_sock}.c, source4/winbind/wb_async_helpers.c. - CVE-2013-4408 Checksums-Sha1: 23e07edafd0c988a81708dc28e42a844d5f43043 3250240 samba_3.6.9-1ubuntu1.2_armhf.deb 742bd5cf2b16e83de3a6dd941b9d2f084bc00546 2615264 samba-common-bin_3.6.9-1ubuntu1.2_armhf.deb dc73ed3cca9f92ec1c803f5b2332b6b93d3dde03 3841604 samba-tools_3.6.9-1ubuntu1.2_armhf.deb 7347c22a906e0bfd2611e3ac13c84b8505f36f05 4207458 smbclient_3.6.9-1ubuntu1.2_armhf.deb 3c74f4f8465e3a32154f152b785ace98c60317b3 1423806 swat_3.6.9-1ubuntu1.2_armhf.deb db1ddfe1ed4f8578628116cacd151118a077de0a 505444 libpam-smbpass_3.6.9-1ubuntu1.2_armhf.deb f478b8cd76014fa2a295b9ea0aecb8d6df909e68 1239082 libsmbclient_3.6.9-1ubuntu1.2_armhf.deb a73e633235f631235c920acf231256485bcf75f9 1666782 libsmbclient-dev_3.6.9-1ubuntu1.2_armhf.deb 55b1ce335334807c6ee2122770d0822d5f40c7d3 2079542 winbind_3.6.9-1ubuntu1.2_armhf.deb d2b7a47311339330f686bfeab0adf91873d8f1ed 23998 libpam-winbind_3.6.9-1ubuntu1.2_armhf.deb 3c7ee8ff820b23d6bc6261cf081bba32935a9721 389292 libnss-winbind_3.6.9-1ubuntu1.2_armhf.deb 97241da6f75aacd41019f1596076790aece549ce 67640584 samba-dbg_3.6.9-1ubuntu1.2_armhf.deb 46d6450ca86323bd1773a4c784d053f5e728f058 22042 libwbclient0_3.6.9-1ubuntu1.2_armhf.deb d95841997d0a3989d1730059be1121292c424e9d 9498 libwbclient-dev_3.6.9-1ubuntu1.2_armhf.deb 105bb50339de8ad0010b2bf9483d82f35036bb93 159944 samba_3.6.9-1ubuntu1.2_armhf_translations.tar.gz Checksums-Sha256: 88ca6ac3a3484e04352003656be3a998927ed177f548e1dd686719669a26fdaf 3250240 samba_3.6.9-1ubuntu1.2_armhf.deb 799d20f4cf62ab44f0c72010152be350c2ca5e01aa39ca400c48e21433710540 2615264 samba-common-bin_3.6.9-1ubuntu1.2_armhf.deb a9742db9782db806a1c06d910961cdf4ef81e98f65fd3c321af85ac2f72995b5 3841604 samba-tools_3.6.9-1ubuntu1.2_armhf.deb dc55baa917a57b026a246ced95d6ac3c2904363fefcfb405a848845a79950e07 4207458 smbclient_3.6.9-1ubuntu1.2_armhf.deb ff9c621e896604aefae63af4b9f931dae4c69384df8609bae839e601fb8da56f 1423806 swat_3.6.9-1ubuntu1.2_armhf.deb 5398d67482d8c9db7e2b80012a00728f1929ab5a59be791d9cfc4e9363a5925d 505444 libpam-smbpass_3.6.9-1ubuntu1.2_armhf.deb 1e877fc0d9726b237e5237a270af9b0e8ddd0b3b90d0b5aed78ae6ad5a0a1cfd 1239082 libsmbclient_3.6.9-1ubuntu1.2_armhf.deb 980beb9df0938de0d58beadff5cdc0a26ab9bdd00fc75831c4007da380c23250 1666782 libsmbclient-dev_3.6.9-1ubuntu1.2_armhf.deb 69339b551ed8e3e631c0027e60bc9240b136e933a1f3b1023d04bd6b6af571b2 2079542 winbind_3.6.9-1ubuntu1.2_armhf.deb bd24d554446ff6d51fd6b015f94c7aef445ac6012c6b5548201a65bd33a25c4e 23998 libpam-winbind_3.6.9-1ubuntu1.2_armhf.deb c50b51d24ac2c70b7af44054416ef58686cd4a2670b225ed5e05f85e639cc0d3 389292 libnss-winbind_3.6.9-1ubuntu1.2_armhf.deb 03b0c758a85d14f3291d79c0cb570138b51b3521043e776c5db8aff0bce45650 67640584 samba-dbg_3.6.9-1ubuntu1.2_armhf.deb 5a0f7b4ae8799397669d3b0fae3382efae1d42557efeded51056c24d3b77aecf 22042 libwbclient0_3.6.9-1ubuntu1.2_armhf.deb c9e93a26b4b9f853704b77a62ce33a6e497ade5245cf119c311085d0f920ed85 9498 libwbclient-dev_3.6.9-1ubuntu1.2_armhf.deb 51e3759710389b25e8294a2bf3bf9c56136c1de5f70dbd9f3126729df6a55fd3 159944 samba_3.6.9-1ubuntu1.2_armhf_translations.tar.gz Files: bcb71fabe09b32b8d5848968bca170f3 3250240 net optional samba_3.6.9-1ubuntu1.2_armhf.deb 310560015133395cecc8d8cf08555d84 2615264 net optional samba-common-bin_3.6.9-1ubuntu1.2_armhf.deb c3c131b3dcf854f715621ed79bd935c4 3841604 net optional samba-tools_3.6.9-1ubuntu1.2_armhf.deb 36a1287ac409456f1bc799b1c39da207 4207458 net optional smbclient_3.6.9-1ubuntu1.2_armhf.deb 6e709e3ee5a7af00d0ab295de2666abb 1423806 net optional swat_3.6.9-1ubuntu1.2_armhf.deb 38b4ba835237354163457d12833621a0 505444 admin extra libpam-smbpass_3.6.9-1ubuntu1.2_armhf.deb 441e3822e939919bb6b5f407c4bf088f 1239082 libs optional libsmbclient_3.6.9-1ubuntu1.2_armhf.deb ac5b28806e24a332f1f392c67f78d601 1666782 libdevel extra libsmbclient-dev_3.6.9-1ubuntu1.2_armhf.deb 86650626457e9ba9a33fcd2e2a039fc8 2079542 net optional winbind_3.6.9-1ubuntu1.2_armhf.deb 31fa7ae56938125161e173227ab181ab 23998 net optional libpam-winbind_3.6.9-1ubuntu1.2_armhf.deb 2bd4e283acf9b94e7c32e245e3d0c792 389292 net optional libnss-winbind_3.6.9-1ubuntu1.2_armhf.deb 805df710377ee85b9f0091dc174d8aaa 67640584 debug extra samba-dbg_3.6.9-1ubuntu1.2_armhf.deb a0a185944b0dd25c0eaa953f93ef7c8c 22042 libs optional libwbclient0_3.6.9-1ubuntu1.2_armhf.deb abea6e88d4836475499c70bca764b45c 9498 libdevel optional libwbclient-dev_3.6.9-1ubuntu1.2_armhf.deb 41735fcdd9efb9da38081640f7f4bce6 159944 raw-translations - samba_3.6.9-1ubuntu1.2_armhf_translations.tar.gz Original-Maintainer: Debian Samba Maintainers