pool/samba
SHA256
2
0
Fork 2
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Samba pre-3.6.4 are affected by a vulnerability that allows remote code exe-

Browse Source 
cution as the "root" user; PIDL based autogenerated code allows overwriting
beyond of allocated array; CVE-2012-1182; (bso#8815); (bnc#752797).

OBS-URL: https://build.opensuse.org/package/show/network:samba:STABLE/samba?expand=0&rev=231
This commit is contained in:
Lars Müller 2012-04-10 16:26:27 +00:00 committed by Git OBS Bridge
parent 8b9a692f5f
commit 1267c2009c
6 changed files with 26 additions and 140 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
build-source-timestamp
View File

@ -1,2 +1,2 @@
2779 2782
Branch : trunk Branch : 3.6.3.SLE11_SP2

4
patches.tar.bz2
View File

@ -1,3 +1,3 @@
version https://git-lfs.github.com/spec/v1 version https://git-lfs.github.com/spec/v1
oid sha256:7aa438c68d91328e9b3adab397568f11aba4f56fb41aa8ec1ef3c53ed20d7e38 oid sha256:90cb870f4596fb463403d33ea7026ec8c835870e23f9c3f09780528f47d8c0e1
size 51310 size 53260

18
samba-doc.spec
View File

@ -1,7 +1,7 @@
# #
# spec file for package samba-doc # spec file for package samba-doc (Version 3.6.3)
# #
# Copyright (c) 2012 SUSE LINUX Products GmbH, Nuernberg, Germany. # Copyright (c) 2010 SUSE LINUX Products GmbH, Nuernberg, Germany.
# #
# All modifications and additions to the file contributed by third parties # All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed # remain the property of their copyright owners, unless otherwise agreed
@ -18,7 +18,7 @@
# norootforbuild # norootforbuild
Name: samba-doc Name: samba-doc
%if 0%{?suse_version} == 0 || 0%{?suse_version} > 1140 %if 0%{?suse_version} == 0 || 0%{?suse_version} > 1140
BuildRequires: autoconf BuildRequires: autoconf
%endif %endif
@ -105,9 +105,9 @@ BuildRequires: pkgconfig
%define build_make_smp_mflags %{?jobs:-j%jobs} %define build_make_smp_mflags %{?jobs:-j%jobs}
%endif %endif
Version: 3.6.3 Version: 3.6.3
Release: 1 Release: 0
%define ldapsmb_ver 1.34b %define ldapsmb_ver 1.34b
Url: http://www.samba.org/ Url: http://www.samba.org/
License: GPL-3.0+ License: GPL-3.0+
Summary: Samba Documentation Summary: Samba Documentation
Group: Documentation/Other Group: Documentation/Other
@ -117,7 +117,7 @@ Provides: samba-gplv3-doc = %{version}
Obsoletes: samba-gplv3-doc < %{version} Obsoletes: samba-gplv3-doc < %{version}
Provides: samba-doc-gplv2 = %{version} Provides: samba-doc-gplv2 = %{version}
Obsoletes: samba-doc-gplv2 < %{version} Obsoletes: samba-doc-gplv2 < %{version}
BuildArch: noarch BuildArch: noarch
Source: http://samba.org/samba/ftp/samba-%{version}%{samba_ver_suffix}.tar.bz2 Source: http://samba.org/samba/ftp/samba-%{version}%{samba_ver_suffix}.tar.bz2
Source1: vendor-files.tar.bz2 Source1: vendor-files.tar.bz2
Source2: patches.tar.bz2 Source2: patches.tar.bz2
@ -186,7 +186,6 @@ BuildRequires: ccache
%define cups_lib_dir %{_libdir}/cups %define cups_lib_dir %{_libdir}/cups
%endif %endif
BuildRoot: %{_tmppath}/%{name}-%{version}-build BuildRoot: %{_tmppath}/%{name}-%{version}-build
%prep %prep
# samba-doc nowadays is part the main samba spec file # samba-doc nowadays is part the main samba spec file
%if 0%{?suse_version} && 0%{?suse_version} < 1111 %if 0%{?suse_version} && 0%{?suse_version} < 1111
@ -434,7 +433,6 @@ fi
# samba-doc nowadays is part the main samba spec file # samba-doc nowadays is part the main samba spec file
%if 0%{?suse_version} && 0%{?suse_version} < 1111 %if 0%{?suse_version} && 0%{?suse_version} < 1111
%files -f filelist-samba-doc %files -f filelist-samba-doc
%defattr(-,root,root) %defattr(-,root,root)
%dir %{DOCDIR} %dir %{DOCDIR}
@ -449,7 +447,3 @@ This package contains all the Samba documentation as it is not part of
the man pages. the man pages.
Source Timestamp: 2779
Branch : trunk
%changelog

9
samba.changes
View File

@ -1,11 +1,16 @@
-------------------------------------------------------------------
Tue Apr 10 16:13:34 UTC 2012 - lmuelle@suse.com
- Samba pre-3.6.4 are affected by a vulnerability that allows remote code exe-
cution as the "root" user; PIDL based autogenerated code allows overwriting
beyond of allocated array; CVE-2012-1182; (bso#8815); (bnc#752797).
------------------------------------------------------------------- -------------------------------------------------------------------
Sun Mar 25 21:14:33 UTC 2012 - lmuelle@suse.de Sun Mar 25 21:14:33 UTC 2012 - lmuelle@suse.de
- s3-winbindd: Only use SamLogonEx when we can get unencrypted session keys; - s3-winbindd: Only use SamLogonEx when we can get unencrypted session keys;
(bso#8599). (bso#8599).
- Correctly handle DENY ACEs when privileges apply; (bso#8797). - Correctly handle DENY ACEs when privileges apply; (bso#8797).
- dcerpc_lsa_lookup_sids_noalloc() crashes when groups has more than 1000
groups; (bso#8807).
------------------------------------------------------------------- -------------------------------------------------------------------
Fri Mar 16 20:26:20 UTC 2012 - lmuelle@suse.de Fri Mar 16 20:26:20 UTC 2012 - lmuelle@suse.de

127
samba.spec
View File

@ -1,7 +1,7 @@
# #
# spec file for package samba # spec file for package samba (Version 3.6.3)
# #
# Copyright (c) 2012 SUSE LINUX Products GmbH, Nuernberg, Germany. # Copyright (c) 2011 SUSE LINUX Products GmbH, Nuernberg, Germany.
# #
# All modifications and additions to the file contributed by third parties # All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed # remain the property of their copyright owners, unless otherwise agreed
@ -16,7 +16,7 @@
# #
# norootforbuild # norootforbuild
# neededforbuild cracklib-devel cups-devel cups-libs e2fsprogs e2fsprogs-devel heimdal-devel heimdal-lib libacl libacl-devel libattr libattr-devel libxml2 libxml2-devel mysql-devel mysql-shared openldap2-client openldap2-devel openssl openssl-devel pam-devel pkgconfig popt popt-devel postgresql-devel postgresql-libs python python-devel readline readline-devel
Name: samba Name: samba
%if 0%{?suse_version} == 0 || 0%{?suse_version} > 1140 %if 0%{?suse_version} == 0 || 0%{?suse_version} > 1140
@ -105,7 +105,7 @@ BuildRequires: pkgconfig
%define build_make_smp_mflags %{?jobs:-j%jobs} %define build_make_smp_mflags %{?jobs:-j%jobs}
%endif %endif
Version: 3.6.3 Version: 3.6.3
Release: 1 Release: 0
%define ldapsmb_ver 1.34b %define ldapsmb_ver 1.34b
License: GPL-3.0+ License: GPL-3.0+
Url: http://www.samba.org/ Url: http://www.samba.org/
@ -211,9 +211,6 @@ binary packages of the most current Samba version, and a bug reporting
how to. how to.
Source Timestamp: 2779
Branch : trunk
%package client %package client
License: GPL-3.0+ License: GPL-3.0+
Summary: Samba Client Utilities Summary: Samba Client Utilities
@ -252,11 +249,7 @@ binary packages of the most current Samba version, and a bug reporting
how to. how to.
Source Timestamp: 2779
Branch : trunk
%if 0%{?suse_version} == 0 || 0%{?suse_version} > 1020 %if 0%{?suse_version} == 0 || 0%{?suse_version} > 1020
%package devel %package devel
License: GPL-3.0+ License: GPL-3.0+
Summary: Libraries and Header Files to Develop Programs with Samba Support Summary: Libraries and Header Files to Develop Programs with Samba Support
@ -272,9 +265,6 @@ This package contains the static libraries and header files needed to
develop programs which make use of Samba. develop programs which make use of Samba.
Source Timestamp: 2779
Branch : trunk
%endif %endif
%if 0%{?suse_version} && 0%{?suse_version} < 1001 || 0%{?suse_version} > 1110 %if 0%{?suse_version} && 0%{?suse_version} < 1001 || 0%{?suse_version} > 1110
@ -297,9 +287,6 @@ This package contains all the Samba documentation as it is not part of
the man pages. the man pages.
Source Timestamp: 2779
Branch : trunk
%endif %endif
%package krb-printing %package krb-printing
@ -319,13 +306,9 @@ Requires: samba-client >= %{version}
A wrapper binary to run smbspool with the original calling UID. A wrapper binary to run smbspool with the original calling UID.
Source Timestamp: 2779
Branch : trunk
%if %{make_utils} %if %{make_utils}
%package utils %package utils
Summary: debug tools Summary: debug tools
Group: Productivity/Networking/Samba Group: Productivity/Networking/Samba
Provides: samba-gplv3-utils = %{version} Provides: samba-gplv3-utils = %{version}
@ -335,9 +318,6 @@ Obsoletes: samba-gplv3-utils < %{version}
Some of the debug-tools for developpers. Some of the debug-tools for developpers.
Source Timestamp: 2779
Branch : trunk
%endif %endif
%package winbind %package winbind
@ -367,17 +347,11 @@ PreReq: coreutils
This is the winbind-daemon and the wbinfo-tool. This is the winbind-daemon and the wbinfo-tool.
Source Timestamp: 2779
Branch : trunk
%if 0%{?suse_version} && 0%{?suse_version} < 1031 %if 0%{?suse_version} && 0%{?suse_version} < 1031
%package -n libsmbclient %package -n libsmbclient
License: GPL-3.0+ License: GPL-3.0+
%else %else
%package -n libsmbclient0 %package -n libsmbclient0
License: GPL-3.0+ License: GPL-3.0+
Provides: libsmbclient = %{version} Provides: libsmbclient = %{version}
Obsoletes: libsmbclient Obsoletes: libsmbclient
@ -390,19 +364,9 @@ Group: System/Libraries
PreReq: /sbin/ldconfig PreReq: /sbin/ldconfig
%if 0%{?suse_version} && 0%{?suse_version} < 1031 %if 0%{?suse_version} && 0%{?suse_version} < 1031
%description -n libsmbclient %description -n libsmbclient
Source Timestamp: 2779
Branch : trunk
%else %else
%description -n libsmbclient0 %description -n libsmbclient0
Source Timestamp: 2779
Branch : trunk
%endif %endif
This package includes the libsmbclient library. This package includes the libsmbclient library.
@ -412,6 +376,7 @@ This entry is required to allow a samba.spec file providing
libsmbclient for SUSE version < 11.0 while versions > 10.0 will have libsmbclient for SUSE version < 11.0 while versions > 10.0 will have
libsmbclient0. libsmbclient0.
%package -n libsmbclient-devel %package -n libsmbclient-devel
License: GPL-3.0+ License: GPL-3.0+
Summary: Libraries and Header Files to Develop Programs with smbclient Support Summary: Libraries and Header Files to Develop Programs with smbclient Support
@ -439,9 +404,6 @@ This package contains the static libraries and header files needed to
develop programs which make use of the smbclient programming interface. develop programs which make use of the smbclient programming interface.
Source Timestamp: 2779
Branch : trunk
%package -n libnetapi0 %package -n libnetapi0
License: GPL-3.0+ License: GPL-3.0+
Summary: Samba netapi Library Summary: Samba netapi Library
@ -452,9 +414,6 @@ PreReq: /sbin/ldconfig
This package includes the netapi library. This package includes the netapi library.
Source Timestamp: 2779
Branch : trunk
%package -n libnetapi-devel %package -n libnetapi-devel
License: GPL-3.0+ License: GPL-3.0+
Summary: Libraries and Header Files to Develop Programs with netapi Support Summary: Libraries and Header Files to Develop Programs with netapi Support
@ -471,17 +430,11 @@ This package contains the static libraries and header files needed to
develop programs which make use of the netapi programming interface. develop programs which make use of the netapi programming interface.
Source Timestamp: 2779
Branch : trunk
%if 0%{?suse_version} && 0%{?suse_version} < 1031 %if 0%{?suse_version} && 0%{?suse_version} < 1031
%package -n libsmbsharemodes %package -n libsmbsharemodes
License: GPL-3.0+ License: GPL-3.0+
%else %else
%package -n libsmbsharemodes0 %package -n libsmbsharemodes0
License: GPL-3.0+ License: GPL-3.0+
%endif %endif
Summary: Samba smbsharemodes Library Summary: Samba smbsharemodes Library
@ -489,22 +442,13 @@ Group: System/Libraries
PreReq: /sbin/ldconfig PreReq: /sbin/ldconfig
%if 0%{?suse_version} && 0%{?suse_version} < 1031 %if 0%{?suse_version} && 0%{?suse_version} < 1031
%description -n libsmbsharemodes %description -n libsmbsharemodes
Source Timestamp: 2779
Branch : trunk
%else %else
%description -n libsmbsharemodes0 %description -n libsmbsharemodes0
Source Timestamp: 2779
Branch : trunk
%endif %endif
This package includes the smbsharemodes library. This package includes the smbsharemodes library.
%package -n libsmbsharemodes-devel %package -n libsmbsharemodes-devel
License: GPL-3.0+ License: GPL-3.0+
Summary: Libraries and Header Files to Develop Programs with smbsharemodes Support Summary: Libraries and Header Files to Develop Programs with smbsharemodes Support
@ -525,9 +469,6 @@ This package contains the static libraries and header files needed to
develop programs which make use of the smbsharemodes programming interface. develop programs which make use of the smbsharemodes programming interface.
Source Timestamp: 2779
Branch : trunk
%package -n libwbclient0 %package -n libwbclient0
License: LGPL-3.0+ License: LGPL-3.0+
Summary: Samba libwbclient Library Summary: Samba libwbclient Library
@ -538,9 +479,6 @@ PreReq: /sbin/ldconfig
This package includes the wbclient library. This package includes the wbclient library.
Source Timestamp: 2779
Branch : trunk
%package -n libwbclient-devel %package -n libwbclient-devel
License: LGPL-3.0+ License: LGPL-3.0+
Summary: Libraries and Header Files to Develop Programs with wbclient Support Summary: Libraries and Header Files to Develop Programs with wbclient Support
@ -557,12 +495,8 @@ This package contains the static libraries and header files needed to
develop programs which make use of the wbclient programming interface. develop programs which make use of the wbclient programming interface.
Source Timestamp: 2779
Branch : trunk
%package -n libtalloc2 %package -n libtalloc2
Version: %{libtalloc_ver} Version: %{libtalloc_ver}
Release: 5
License: LGPL-3.0+ License: LGPL-3.0+
Summary: Samba talloc Library Summary: Samba talloc Library
Group: System/Libraries Group: System/Libraries
@ -572,12 +506,8 @@ PreReq: /sbin/ldconfig
This package includes the talloc library. This package includes the talloc library.
Source Timestamp: 2779
Branch : trunk
%package -n libtalloc-devel %package -n libtalloc-devel
Version: %{libtalloc_ver} Version: %{libtalloc_ver}
Release: 5
License: LGPL-3.0+ License: LGPL-3.0+
Summary: Libraries and Header Files to Develop Programs with talloc Support Summary: Libraries and Header Files to Develop Programs with talloc Support
Group: Development/Libraries/C and C++ Group: Development/Libraries/C and C++
@ -593,12 +523,8 @@ This package contains the static libraries and header files needed to
develop programs which make use of the talloc programming interface. develop programs which make use of the talloc programming interface.
Source Timestamp: 2779
Branch : trunk
%package -n libtdb1 %package -n libtdb1
Version: %{libtdb_ver} Version: %{libtdb_ver}
Release: 5
License: LGPL-3.0+ License: LGPL-3.0+
Summary: Samba tdb Library Summary: Samba tdb Library
Group: System/Libraries Group: System/Libraries
@ -608,12 +534,8 @@ PreReq: /sbin/ldconfig
This package includes the tdb library. This package includes the tdb library.
Source Timestamp: 2779
Branch : trunk
%package -n libtdb-devel %package -n libtdb-devel
Version: %{libtdb_ver} Version: %{libtdb_ver}
Release: 5
License: LGPL-3.0+ License: LGPL-3.0+
Summary: Libraries and Header Files to Develop Programs with tdb Support Summary: Libraries and Header Files to Develop Programs with tdb Support
Group: Development/Libraries/C and C++ Group: Development/Libraries/C and C++
@ -625,12 +547,8 @@ This package contains the static libraries and header files needed to
develop programs which make use of the tdb programming interface. develop programs which make use of the tdb programming interface.
Source Timestamp: 2779
Branch : trunk
%package -n libtevent0 %package -n libtevent0
Version: %{libtevent_ver} Version: %{libtevent_ver}
Release: 5
License: LGPL-3.0+ License: LGPL-3.0+
Summary: Samba tevent Library Summary: Samba tevent Library
Group: System/Libraries Group: System/Libraries
@ -640,12 +558,8 @@ PreReq: /sbin/ldconfig
This package includes the tevent library. This package includes the tevent library.
Source Timestamp: 2779
Branch : trunk
%package -n libtevent-devel %package -n libtevent-devel
Version: %{libtevent_ver} Version: %{libtevent_ver}
Release: 5
License: LGPL-3.0+ License: LGPL-3.0+
Summary: Libraries and Header Files to Develop Programs with tevent Support Summary: Libraries and Header Files to Develop Programs with tevent Support
Group: Development/Libraries/C and C++ Group: Development/Libraries/C and C++
@ -662,12 +576,8 @@ This package contains the static libraries and header files needed to
develop programs which make use of the tevent programming interface. develop programs which make use of the tevent programming interface.
Source Timestamp: 2779
Branch : trunk
%package -n libldb1 %package -n libldb1
Version: %{libldb_ver} Version: %{libldb_ver}
Release: 5
License: LGPL-3.0+ License: LGPL-3.0+
Summary: Samba ldb Library Summary: Samba ldb Library
Group: System/Libraries Group: System/Libraries
@ -678,12 +588,8 @@ PreReq: /sbin/ldconfig
This package includes the ldb library. This package includes the ldb library.
Source Timestamp: 2779
Branch : trunk
%package -n libldb-devel %package -n libldb-devel
Version: %{libldb_ver} Version: %{libldb_ver}
Release: 5
License: LGPL-3.0+ License: LGPL-3.0+
Summary: Libraries and Header Files to Develop Programs with ldb Support Summary: Libraries and Header Files to Develop Programs with ldb Support
Group: Development/Libraries/C and C++ Group: Development/Libraries/C and C++
@ -700,14 +606,11 @@ This package contains the static libraries and header files needed to
develop programs which make use of the tevent programming interface. develop programs which make use of the tevent programming interface.
Source Timestamp: 2779
Branch : trunk
%if %{make_ldapsmb} %if %{make_ldapsmb}
%package -n ldapsmb %package -n ldapsmb
Version: 1.34b Version: 1.34b
Release: 307 Release: 0
License: GPL-2.0+ License: GPL-2.0+
Summary: Tool to administer Samba's LDAP backend Summary: Tool to administer Samba's LDAP backend
Group: Productivity/Networking/Samba Group: Productivity/Networking/Samba
@ -718,9 +621,6 @@ This tool aims to simplify the administration of a Samba Domain
Controller that uses the ldapsam passdb backend. Controller that uses the ldapsam passdb backend.
Source Timestamp: 2779
Branch : trunk
%endif %endif
%prep %prep
@ -1374,37 +1274,29 @@ fi
%{?insserv_cleanup:%{insserv_cleanup}} %{?insserv_cleanup:%{insserv_cleanup}}
%if 0%{?suse_version} && 0%{?suse_version} < 1031 %if 0%{?suse_version} && 0%{?suse_version} < 1031
%post -n libsmbclient %post -n libsmbclient
%else %else
%post -n libsmbclient0 %post -n libsmbclient0
%endif %endif
/sbin/ldconfig /sbin/ldconfig
%if 0%{?suse_version} && 0%{?suse_version} < 1031 %if 0%{?suse_version} && 0%{?suse_version} < 1031
%postun -n libsmbclient %postun -n libsmbclient
%else %else
%postun -n libsmbclient0 %postun -n libsmbclient0
%endif %endif
/sbin/ldconfig /sbin/ldconfig
%if 0%{?suse_version} && 0%{?suse_version} < 1031 %if 0%{?suse_version} && 0%{?suse_version} < 1031
%post -n libsmbsharemodes %post -n libsmbsharemodes
%else %else
%post -n libsmbsharemodes0 %post -n libsmbsharemodes0
%endif %endif
/sbin/ldconfig /sbin/ldconfig
%if 0%{?suse_version} && 0%{?suse_version} < 1031 %if 0%{?suse_version} && 0%{?suse_version} < 1031
%postun -n libsmbsharemodes %postun -n libsmbsharemodes
%else %else
%postun -n libsmbsharemodes0 %postun -n libsmbsharemodes0
%endif %endif
/sbin/ldconfig /sbin/ldconfig
@ -1704,10 +1596,8 @@ fi
%{_libdir}/pkgconfig/netapi.pc %{_libdir}/pkgconfig/netapi.pc
%if 0%{?suse_version} && 0%{?suse_version} < 1031 %if 0%{?suse_version} && 0%{?suse_version} < 1031
%files -n libsmbclient %files -n libsmbclient
%else %else
%files -n libsmbclient0 %files -n libsmbclient0
%endif %endif
%defattr(-,root,root) %defattr(-,root,root)
@ -1724,10 +1614,8 @@ fi
%{_libdir}/pkgconfig/smbclient.pc %{_libdir}/pkgconfig/smbclient.pc
%if 0%{?suse_version} && 0%{?suse_version} < 1031 %if 0%{?suse_version} && 0%{?suse_version} < 1031
%files -n libsmbsharemodes %files -n libsmbsharemodes
%else %else
%files -n libsmbsharemodes0 %files -n libsmbsharemodes0
%endif %endif
%defattr(-,root,root) %defattr(-,root,root)
@ -1816,4 +1704,3 @@ fi
%{_sbindir}/ldapsmb %{_sbindir}/ldapsmb
%{_mandir}/man5/ldapsmb.5.* %{_mandir}/man5/ldapsmb.5.*
%endif %endif
%changelog

4
vendor-files.tar.bz2
View File

@ -1,3 +1,3 @@
version https://git-lfs.github.com/spec/v1 version https://git-lfs.github.com/spec/v1
oid sha256:63f3eeb5767ac44c3ac04980269dc7ed28d466176168f9363eb1e8271de793dd oid sha256:f03d2b91ee4ec89322cbbe2ad5c022c9f9c083ee60fc6b6aad2736894cb5fc6f
size 52739 size 52553