Accepting request 1116864 from home:npower:branches:network:samba:STABLE

- CVE-2023-4091: samba: Client can truncate file with read-only permissions; (bsc#1215904); (bso#15439). - CVE-2023-42669: samba: rpcecho, enabled and running in AD DC, allows blocking sleep on request; (bso#1215905); (bso#15474). - CVE-2023-42670: samba: The procedure number is out of range when starting Active Directory Users and Computers; (bsc#1215906); (bso#15473). - CVE-2023-3961: samba: Unsanitized client pipe name passed to local_np_connect(); (bsc#1215907); (bso#15422). - CVE-2023-4154: samba: dirsync allows SYSTEM access with only "GUID_DRS_GET_CHANGES" right, not "GUID_DRS_GET_ALL_CHANGES; (bsc#1215908); (bso#15424). OBS-URL: https://build.opensuse.org/request/show/1116864 OBS-URL: https://build.opensuse.org/package/show/network:samba:STABLE/samba?expand=0&rev=685
2023-10-11 15:15:21 +00:00 · 2023-10-11 15:15:21 +00:00 · 3eb5634326
commit 3eb5634326
parent 39c3d44183
4 changed files with 20 additions and 5 deletions
--- a/samba-4.19.0+git.306.19d2e214c58.tar.bz2
+++ b/samba-4.19.0+git.306.19d2e214c58.tar.bz2
@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:53a94b2caeeea6ad6c285bd90eb56155e2a2a1e170ac25ad449ae17e8e769bd8
-size 44183337
--- a/samba-4.19.1+git.312.c912b3d2ef6.tar.bz2
+++ b/samba-4.19.1+git.312.c912b3d2ef6.tar.bz2
@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:a77c5f683e347b3ac2f656c1504dac32e0dccb901ee6d79c045f6c6917a16bf9
+size 44233972
--- a/samba.changes
+++ b/samba.changes
@ -1,3 +1,19 @@
+-------------------------------------------------------------------
+Tue Oct 10 15:12:38 UTC 2023 - Noel Power <nopower@suse.com>
+
+- CVE-2023-4091: samba: Client can truncate file with read-only
+  permissions; (bsc#1215904); (bso#15439).
+- CVE-2023-42669: samba: rpcecho, enabled and running in AD DC,
+  allows blocking sleep on request; (bso#1215905); (bso#15474).
+- CVE-2023-42670: samba:  The procedure number is out of range
+  when starting Active Directory Users and Computers;
+  (bsc#1215906); (bso#15473).
+- CVE-2023-3961: samba: Unsanitized client pipe name passed to
+  local_np_connect(); (bsc#1215907); (bso#15422).
+- CVE-2023-4154: samba: dirsync allows SYSTEM access with only
+  "GUID_DRS_GET_CHANGES" right, not "GUID_DRS_GET_ALL_CHANGES;
+  (bsc#1215908); (bso#15424).
+
 -------------------------------------------------------------------
 Tue Sep 26 08:36:43 UTC 2023 - Noel Power <nopower@suse.com>

--- a/samba.spec
+++ b/samba.spec
@ -158,7 +158,7 @@ BuildRequires:  liburing-devel
 %endif
 BuildRequires:  sysuser-tools

-Version:        4.19.0+git.306.19d2e214c58
+Version:        4.19.1+git.312.c912b3d2ef6
 Release:        0
 URL:            https://www.samba.org/
 Obsoletes:      samba-32bit < %{version}
@ -1147,7 +1147,6 @@ exit 0
 %{_libdir}/samba/rpcd_fsrvp
 %{_libdir}/samba/rpcd_lsad
 %{_libdir}/samba/rpcd_mdssvc
-%{_libdir}/samba/rpcd_rpcecho
 %{_libdir}/samba/rpcd_spoolss
 %{_libdir}/samba/rpcd_winreg
 %{_libdir}/samba/samba-bgqd