Format: 1.8 Date: Mon, 09 Dec 2013 10:32:37 -0500 Source: samba Binary: samba samba-common-bin samba-common samba-tools smbclient swat samba-doc samba-doc-pdf libpam-smbpass libsmbclient libsmbclient-dev winbind libpam-winbind libnss-winbind samba-dbg libwbclient0 libwbclient-dev Architecture: i386 all i386_translations Version: 2:3.6.9-1ubuntu1.2 Distribution: raring Urgency: low Maintainer: Ubuntu/amd64 Build Daemon Changed-By: Marc Deslauriers Description: libnss-winbind - Samba nameservice integration plugins libpam-smbpass - pluggable authentication module for Samba libpam-winbind - Windows domain authentication integration plugin libsmbclient - shared library for communication with SMB/CIFS servers libsmbclient-dev - development files for libsmbclient libwbclient-dev - Samba winbind client library - development files libwbclient0 - Samba winbind client library samba - SMB/CIFS file, print, and login server for Unix samba-common - common files used by both the Samba server and client samba-common-bin - common files used by both the Samba server and client samba-dbg - Samba debugging symbols samba-doc - Samba documentation samba-doc-pdf - Samba documentation in PDF format samba-tools - Samba testing utilities smbclient - command-line SMB/CIFS clients for Unix swat - Samba Web Administration Tool winbind - Samba nameservice integration server Changes: samba (2:3.6.9-1ubuntu1.2) raring-security; urgency=low . * SECURITY UPDATE: file restrictions bypass via alternate data streams - debian/patches/CVE-2013-4475.patch: properly check base file access in source3/smbd/open.c. - CVE-2013-4475 * SECURITY UPDATE: pam_winbind access restriction bypass via invalid group names - debian/patches/CVE-2012-6150.patch: ensure valid groups in nsswitch/pam_winbind.c. - CVE-2012-6150 * SECURITY UPDATE: arbitrary code execution via incorrect DCE-RPC fragment length field checking - debian/patches/CVE-2013-4408.patch: apply massive upstream fix to lib/async_req/async_sock.c, libcli/util/tstream.c, librpc/idl/dcerpc.idl, librpc/rpc/dcerpc_util.c, librpc/rpc/rpc_common.h, nsswitch/libwbclient/wbc_sid.c, nsswitch/wbinfo.c, source3/lib/netapi/{group,localgroup,user}.c, source3/lib/util_tsock.c, source3/libnet/libnet_join.c, source3/librpc/rpc/dcerpc_helpers.c, source3/rpc_client/{cli_lsarpc,cli_pipe}.c, source3/rpc_server/netlogon/srv_netlog_nt.c, source3/rpcclient/{cmd_lsarpc,cmd_samr}.c, source3/smbd/lanman.c, source3/utils/net_rpc.c, source3/utils/net_rpc_join.c, source3/winbindd/{wb_lookupsids,winbindd_msrpc,winbindd_rpc}.c, source4/libcli/util/clilsa.c, source4/libnet/{groupinfo,groupman, libnet_join,libnet_lookup,libnet_passwd,userinfo,userman}.c, source4/librpc/rpc/{dcerpc,dcerpc_smb,dcerpc_smb2,dcerpc_sock}.c, source4/winbind/wb_async_helpers.c. - CVE-2013-4408 Checksums-Sha1: 6f7b23d1ac7699c9fafe09caa9b09b29474702d7 4116084 samba_3.6.9-1ubuntu1.2_i386.deb a430defa74dc2b138676d19d46468bb212d6c5fc 3670206 samba-common-bin_3.6.9-1ubuntu1.2_i386.deb 726717565af0df7e65d88220a2e9267169122272 172478 samba-common_3.6.9-1ubuntu1.2_all.deb 13e1af36d1ef502fc7ac921db45c7cc3ef58a4ef 5471500 samba-tools_3.6.9-1ubuntu1.2_i386.deb a72d82dabcb09a956623435998894dcc334004c9 5328562 smbclient_3.6.9-1ubuntu1.2_i386.deb 116243805f4c7f643de1f9a47859f54f552ede47 1612166 swat_3.6.9-1ubuntu1.2_i386.deb b6c987b33173ed209ae3bfd9df388d02df5d7e5c 5716630 samba-doc_3.6.9-1ubuntu1.2_all.deb 2b21d59ff27d2addba0ee4012943250315dd5f3f 6996102 samba-doc-pdf_3.6.9-1ubuntu1.2_all.deb 2ef0223d699f2f81fabfd9a856735d2ac36314e8 598732 libpam-smbpass_3.6.9-1ubuntu1.2_i386.deb 8a3a2c18977c1e62af7c424652e591a92588f3e5 1424896 libsmbclient_3.6.9-1ubuntu1.2_i386.deb bce6c6dde6eb593b90cad6eebe6e5921c1fe6194 1788938 libsmbclient-dev_3.6.9-1ubuntu1.2_i386.deb 5f1cc695f280dc8cd02cee0692b05e6290559467 2501580 winbind_3.6.9-1ubuntu1.2_i386.deb 0556d8f3e5bde78a308618d1781febb0ceb8d768 28910 libpam-winbind_3.6.9-1ubuntu1.2_i386.deb 2135d0237b5da4f5f19423e27fbf684791c7221a 463378 libnss-winbind_3.6.9-1ubuntu1.2_i386.deb 0ceee4aa8cb214ce49a9363a20b755611b4cb5ee 65200898 samba-dbg_3.6.9-1ubuntu1.2_i386.deb 0e29738a5f57a159193cf929e9c83df83b68d51e 26328 libwbclient0_3.6.9-1ubuntu1.2_i386.deb 79becc2538f4068717ceef83bb261ca93c0941cd 9522 libwbclient-dev_3.6.9-1ubuntu1.2_i386.deb 634a21be9e4c7a527df9b267066614bb244d22ec 160140 samba_3.6.9-1ubuntu1.2_i386_translations.tar.gz Checksums-Sha256: 2dba924e371128333edbae1c40c1362f8c7f307e6a2a505395828ac28cc9f1be 4116084 samba_3.6.9-1ubuntu1.2_i386.deb 87fb3252bed209efa8173c377ef86fba3c3a3924cb4be0743daea8b0d44db657 3670206 samba-common-bin_3.6.9-1ubuntu1.2_i386.deb 26c7f1088ebe5e152b14fc513c2d2c67d2ec424f351ffd91b0fd1d1d60711da3 172478 samba-common_3.6.9-1ubuntu1.2_all.deb 81420bee7c36a98570c20b81d4dd932b4785997ac219138daf96669176829dfe 5471500 samba-tools_3.6.9-1ubuntu1.2_i386.deb bf36c43fc9eabed12893cf8b3782e08d7036fa7400aa10e85ad68ad3aa604c13 5328562 smbclient_3.6.9-1ubuntu1.2_i386.deb 5c58b9a591f5324cd36225a01c7d07c7cd1fa80a5673be71661b587d091270f0 1612166 swat_3.6.9-1ubuntu1.2_i386.deb 3247ae893de52480c782b34bed0a69148fa1e1f9dffcdb9120ee2b486f536cfb 5716630 samba-doc_3.6.9-1ubuntu1.2_all.deb 13b5e7aa1b26e4c7dfb690935b072b538dfa5475a5666f13a533d7d016a97ee2 6996102 samba-doc-pdf_3.6.9-1ubuntu1.2_all.deb e7251be6dac93d048e67139ef5f642a1f4d03a51bb66c632f3cdb49f029e5574 598732 libpam-smbpass_3.6.9-1ubuntu1.2_i386.deb a1fe23f02a985cf27b0b8eb6c3aee901bff73fa5a30bf20db8e4b166d637f27d 1424896 libsmbclient_3.6.9-1ubuntu1.2_i386.deb 93b13b3b68ed8065c7fd5a1b7bc7649aadabeeb9d98eee80592945f35182c229 1788938 libsmbclient-dev_3.6.9-1ubuntu1.2_i386.deb 02bc823f24593e3e92e6696ef9e8bbffdaa5f0a007a2674c0658854e7bf169c5 2501580 winbind_3.6.9-1ubuntu1.2_i386.deb 66aaebc1eab160a50e6c9cfcf0ef024d7fce4026d995ff54e2082ae543372f4a 28910 libpam-winbind_3.6.9-1ubuntu1.2_i386.deb 659bf1fafc64122aa202ae7ea7ee69a1dab5dc5ed2b9dbcb2ecd508451eb9e78 463378 libnss-winbind_3.6.9-1ubuntu1.2_i386.deb c0640b5a9b6a8826b41ab6eedbbf4e2dbcf9d1cdfe89f4fdcc34f5e548c2091f 65200898 samba-dbg_3.6.9-1ubuntu1.2_i386.deb 9465f4319180bfad63baa2ad6e420a86c63cb98e627db17045f50c87ca341908 26328 libwbclient0_3.6.9-1ubuntu1.2_i386.deb a760ba6852e0b8e6045d9beaad82dacd77531f121aa08586ae985adecd46b24c 9522 libwbclient-dev_3.6.9-1ubuntu1.2_i386.deb 86d9b0a9bc93ecce61334b76f04c2d9884779fc4bb26e903b9a78d28b827ef29 160140 samba_3.6.9-1ubuntu1.2_i386_translations.tar.gz Files: 36a9d992bbe6fb5878dedad01ea9a912 4116084 net optional samba_3.6.9-1ubuntu1.2_i386.deb 82c6f6e2462a88e25d3cdda5d1d44845 3670206 net optional samba-common-bin_3.6.9-1ubuntu1.2_i386.deb a93be3bf6822452e24a5fdb039c7c42b 172478 net optional samba-common_3.6.9-1ubuntu1.2_all.deb 146260eb73b5cb0cc532d31152bd51d0 5471500 net optional samba-tools_3.6.9-1ubuntu1.2_i386.deb 922c2d4da5125f72334c20b0ed98ecc7 5328562 net optional smbclient_3.6.9-1ubuntu1.2_i386.deb 2db13bc3fb45e64f65e87a9627171635 1612166 net optional swat_3.6.9-1ubuntu1.2_i386.deb 08deda8869e3e18c2a27709bf5c9dc77 5716630 doc optional samba-doc_3.6.9-1ubuntu1.2_all.deb 7b59389f36e55345a557309815c8fa7a 6996102 doc optional samba-doc-pdf_3.6.9-1ubuntu1.2_all.deb d0b0371bfe8c1b18c47ef6715c9f1c0a 598732 admin extra libpam-smbpass_3.6.9-1ubuntu1.2_i386.deb 044cf53bc97268eb16959afc991a9a9e 1424896 libs optional libsmbclient_3.6.9-1ubuntu1.2_i386.deb 6315d94f4a805347ab9c5bf372c70e07 1788938 libdevel extra libsmbclient-dev_3.6.9-1ubuntu1.2_i386.deb dbd2ea2c149164d7aafc1d401df5e22c 2501580 net optional winbind_3.6.9-1ubuntu1.2_i386.deb 00758625bad85756d1b1644a99bcf4aa 28910 net optional libpam-winbind_3.6.9-1ubuntu1.2_i386.deb e69583d5af501aaeafd3f6ed95fe5489 463378 net optional libnss-winbind_3.6.9-1ubuntu1.2_i386.deb dbb57b8406bccab9498ed087ca66b107 65200898 debug extra samba-dbg_3.6.9-1ubuntu1.2_i386.deb b7f928bf206802fbe9d742e41357c20c 26328 libs optional libwbclient0_3.6.9-1ubuntu1.2_i386.deb b66859987dcd017788e93be4520da891 9522 libdevel optional libwbclient-dev_3.6.9-1ubuntu1.2_i386.deb 9ece6af2fb3b1d5db4e657e6160b36ff 160140 raw-translations - samba_3.6.9-1ubuntu1.2_i386_translations.tar.gz Original-Maintainer: Debian Samba Maintainers