From 8e67baa938647242112390d2e61e05b1f980ac11e23215375f00e0dbb1ea3d5e Mon Sep 17 00:00:00 2001 From: James McDonough Date: Wed, 13 Apr 2016 11:59:31 +0000 Subject: [PATCH] Accepting request 389361 from home:jmcdough:branches:network:samba:STABLE Update to 4.4.2 for badlock OBS-URL: https://build.opensuse.org/request/show/389361 OBS-URL: https://build.opensuse.org/package/show/network:samba:STABLE/samba?expand=0&rev=536 --- patches.tar.bz2 | 4 +- samba-4.4.2.tar.asc | 7 +++ samba-4.4.2.tar.gz | 3 ++ samba.changes | 19 ++++++++ samba.keyring | 101 +++++++++++++------------------------------ samba.spec | 6 +-- vendor-files.tar.bz2 | 4 +- 7 files changed, 65 insertions(+), 79 deletions(-) create mode 100644 samba-4.4.2.tar.asc create mode 100644 samba-4.4.2.tar.gz diff --git a/patches.tar.bz2 b/patches.tar.bz2 index a23fb51..4aff534 100644 --- a/patches.tar.bz2 +++ b/patches.tar.bz2 @@ -1,3 +1,3 @@ version https://git-lfs.github.com/spec/v1 -oid sha256:ab646ff70d280969364bd8ea3f70bc2acbe1ea618c500b6183ce7765c77bb920 -size 19419 +oid sha256:6ddfa00c9c8413dfdc4fc247d069239b5c2cc194e139bd1d6e1abd6cdca30753 +size 41306 diff --git a/samba-4.4.2.tar.asc b/samba-4.4.2.tar.asc new file mode 100644 index 0000000..89071e7 --- /dev/null +++ b/samba-4.4.2.tar.asc @@ -0,0 +1,7 @@ +-----BEGIN PGP SIGNATURE----- +Version: GnuPG v1 + +iD8DBQBXC2ZibzORW2Vot+oRAj2SAJ9gPCujAn6JXdCj8TdphYo78IrCogCbBguQ +Sqly5PBxG/A3+bdMPE13NlY= +=MyvL +-----END PGP SIGNATURE----- diff --git a/samba-4.4.2.tar.gz b/samba-4.4.2.tar.gz new file mode 100644 index 0000000..43766a9 --- /dev/null +++ b/samba-4.4.2.tar.gz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:eaecd41a85ebb9507b8db9856ada2a949376e9d53cf75664b5493658f6e5926a +size 20711230 diff --git a/samba.changes b/samba.changes index 9673d4a..dcd6f06 100644 --- a/samba.changes +++ b/samba.changes @@ -1,3 +1,22 @@ +------------------------------------------------------------------- +Sat Apr 9 21:36:02 UTC 2016 - jmcdonough@suse.com + +- Update to 4.4.2 + + A man-in-the-middle can downgrade NTLMSSP authentication; + CVE-2016-2110; (bso#11688); (bsc#973031). + + Domain controller netlogon member computer can be spoofed; + CVE-2016-2111; (bso#11749); (bsc#973032). + + LDAP conenctions vulnerable to downgrade and MITM attack; + CVE-2016-2112; (bso#11644); (bsc#973033). + + TLS certificate validation missing; CVE-2016-2113; (bso#11752); + (bsc#973034). + + Named pipe IPC vulnerable to MITM attacks; CVE-2016-2115; + (bso#11756); (bsc#973036). + + "Badlock" DCERPC impersonation of authenticated account possible; + CVE-2016-2118; (bso#11804); (bsc#971965). + + DCERPC server and client vulnerable to DOS and MITM attacks; + CVE-2015-5370; (bso#11344); (bsc#936862). + ------------------------------------------------------------------- Tue Mar 22 17:36:01 UTC 2016 - lmuelle@suse.com diff --git a/samba.keyring b/samba.keyring index fa0cabf..572aa5f 100644 --- a/samba.keyring +++ b/samba.keyring @@ -1,5 +1,8 @@ +pub 1024D/6568B7EA 2007-02-04 [expires: 2014-02-25] +uid Samba Distribution Verification Key +sub 2048g/DA6DFB44 2007-02-04 [expires: 2014-02-25] -----BEGIN PGP PUBLIC KEY BLOCK----- -Version: GnuPG v2 +Version: GnuPG v1.4.11 (GNU/Linux) mQGiBEXGOUcRBACooMht/2pmNT3bKZn1WEFQa+sXe6nxi3G6lH5bIBUKp85SDM57 4qTcBIJXhwfGABeSvyUdZJbBxJDD5bNiO4k+Y5j3t8t9hb2FKgJ1bXL2aO5BbFnJ @@ -11,75 +14,29 @@ JMZABACis5ms470DH3OwU7b32lDDLFWlwGEQX+OKQealhYgz3hdIzO+cm6Gz0/z1 YGl8oV0dc1tG2EfsndDx7QRwrBoxahfsgClN4K8HLtbBy1Ox9kZn+hr1yNEaPdko +W5bC96Wo2RqnSP09qJ5/tp6rXXCLIgF/+PeCJtP31MaMP0Jo7Q6U2FtYmEgRGlz dHJpYnV0aW9uIFZlcmlmaWNhdGlvbiBLZXkgPHNhbWJhLWJ1Z3NAc2FtYmEub3Jn -PohGBBARAgAGBQJFxjl1AAoJEFzV2gcVe8leqE8AoJ0hBQrNqQMFuS1NtgH1Q8If -XuQJAJ9pNHUaBo9lC/ybOKr397AahMOK64hGBBARAgAGBQJFxjnGAAoJECEe6jHY -NRH2cgwAoMr0VwJldF1IR9b2zTBBvfrBV2gsAKDkE7JNfYty7stz8PtYA2lHgs3i -3YhmBBMRAgAmBQJFxjlHAhsDBQkB4TOABgsJCAcDAgQVAggDBBYCAwECHgECF4AA -CgkQbzORW2Vot+oV+QCfVPubkZlw6Cfv6+/ilYvWJGBV8fwAn1RnIWttHky6/MZj -dc00LRgzo2p5iEYEEBECAAYFAkXIC4MACgkQi9gubzC5S1zMJgCgqQOcgVsXQ7IT -BsUTEFPiGPwUis8An1sb+UQfnsoRVoiwxiczw55ACi1BiEYEEBECAAYFAkXIMMUA -CgkQ3L4Y/6A1U7wMMACgg4+AVtovhtY6y1qip9uZ8qwbnkkAni269FhHSPKfGGEn -fkrN/Q2/3EY7iEYEEBECAAYFAkYNcugACgkQp6cLM3ld2XFzGwCffyD/eMhEKCN6 -j5FCSbb3rhkyR/kAn0PlFtYrTNkrc1dOezhvaZZCPBHWiEYEEBECAAYFAkZQmboA -CgkQVVCoNUmKuAcl1wCdEzFgS3DIgIhYy6Id5a9EqUjArLkAnArdjXskM952gLuy -JjgictCiHdIeiEYEEBECAAYFAkZdvkMACgkQw1Ohknblb7ZN8gCgjD/SWG0qBCBD -7w19I5kVTijU9j4AmwbPf4wU7hY942tn1NxUyKwF+edxiGYEExECACYCGwMGCwkI -BwMCBBUCCAMEFgIDAQIeAQIXgAUCR81nqQUJA+hh4gAKCRBvM5FbZWi36vi9AJ4m -VG9nQnBvew0UM4d+/wi+9Lb31ACfSriqm7CdG27eSY4+631lFdRV9meIRgQQEQIA -BgUCSS7ebQAKCRBI6TdojuEWiAsSAJ4ow6jIZS1ynkWqGaykbZXCQoG5CQCdGWgG -x59LsB1R+IVv5HzvyKSQpuWIZgQTEQIAJgIbAwYLCQgHAwIEFQIIAwQWAgMBAh4B -AheABQJJtjjzBQkHsmasAAoJEG8zkVtlaLfqxAQAoI0BuXAfJd6e36a/2rt4zVFO -3EmeAKCrWxRIFlIWArnqOfG2peNa9+tnQohGBBARAgAGBQJKHm3CAAoJEF6MeFp0 -Z3tp7+YAnRIsms4zGAX6q/WtKSUAzf4giMWnAKCTssyafibiLZu5ZimXEWJnD2ap -rIhGBBARAgAGBQJKHm3aAAoJEBSRKbUIDcvCaKEAoJnS/xnmtj5g61Nmb6KQN2mK -frlGAJ9aZZr9OzwLlY4njTIlHYQqVFNtSohmBBMRAgAmAhsDBgsJCAcDAgQVAggD -BBYCAwECHgECF4AFAk1jjnEFCQl+iKoACgkQbzORW2Vot+o+KQCgkMVKNdbKjF9s -F7k97c0qd/xMyy8AnR6EnNmLXPZNxQlcp9ZWYcPl+IUiiGYEExECACYCGwMGCwkI -BwMCBBUCCAMEFgIDAQIeAQIXgAUCT0qLegUJDUa5MwAKCRBvM5FbZWi36goxAKDF -Nnoa+jpwmxV1UvNSIk9wcP21bgCeOI5MXoXQbrSg8rQjEo6Ma9VD7iuIXgQQEQgA -BgUCUjUW1AAKCRAReIUFQSicO362AP9mGjkr3cZuUzEnP7RJBX/Go4Crd4LdFn1e -vGwGzJNoTgD/YHwts95bV2DYqfeY7BB4PxYmbthqS3WToBlNxK0HZMqIZgQTEQIA -JgIbAwYLCQgHAwIEFQIIAwQWAgMBAh4BAheABQJS2PAdBQkQ1R3SAAoJEG8zkVtl -aLfquyQAnjooEPX3BhAhWP/vBX/O2mvzRxsKAKCoCbKGjolO3ATr3p2AYqOhtXzA -n4kCIAQQAQoACgUCUx+R+AMFATwACgkQlbYYGy0z6ewu9Q//bI6goLONQNW0Vz9E -uHUlgezl42QbvTWF/dUEwU7sLdRuRDgugFxjTmsZP3WRuPihZwYsKLQDrmMrWHqh -i+BsU03eQ2wlu5VFP2kaJKtSuErsEe1l2OIpvRGJy7fxEd9tjAK6qrO3oXao4I07 -nd6TxQugYyxlR+m5NX2QhlFwy4B2VuH7habJk7fIy7j8F2CW9z/DiJBz1rtW4Btm -7ZrWR3Ha4m8LLuCDuN4oQVMezOKYJCb4sXZWCTSlPC3ZC7yhbumNlcBIx1g7Mo0x -SO5Q7d4tk/AfA6uxGFN3XSUl4uei8ojcOVzb76oP9Yg31jeDcmFRYCzFHVUpbGy3 -2syGRYnDlKYBxjhoGACp109j3TmuReZHmqLRkG3bzD1l/SZnaXTyMNcBhWIk6WbQ -J1wjUK2tkO3eDCepoTgGsmmT9xSwBMj6YBuIrv+uV8BHmHJnl8vJZnV8RbMj50ep -J7DEw7ieYYvRu842qfr+/B1/O4/CoZQGwrEA8La1Gku2LYRCz7C6GLqQgZNt3AJi -YgOx99qcvHua1ZcdNAA7jFScPPno4zntqZTdmUsFD5cYieyHfcINcYyD8qBrRkNZ -v3mjEUj0UeWcyceGGM5NE2ZkQVgttBIRYwNnIYP6Prqwupx8TbbAeaZ/5Jv9+EoP -Ohv06niebO/ghKq3xHHvPnxRWROIZgQTEQIAJgIbAwYLCQgHAwIEFQIIAwQWAgMB -Ah4BAheABQJWqJ6oBQkSw5jbAAoJEG8zkVtlaLfqADYAoLWH3Gvuc5d2nacZKyWT -BuHN8VoOAJ9uNmTAl3Kaad1rWdAytLHL0Psi24kCHAQQAQoABgUCVly3ZgAKCRDX -0EXSfsgJeVvmD/9LU8y/aSSfqVZ0x1O/WnzSnax++NshMHRep+hvthZM96d+O/bD -W3MuoZpiSoizg+WSuVoCY/207E8W/gYSyqC9/aiIctyFQW12RBnR+R+ra4Wq6I9m -HF6mp5Yb8RFZjquBx94qLpV85rL7HiNHdOys0hgJOVUzx2nhg8KRH3Gr1q7jPRn9 -37flIA94tFtaji7/TFt0uPJQ6q6qJdWXaqZyd3m3yeqNKhqI/gMHV9pavFcI9GQ3 -En36Byfigwdlo7IbUaJDSF9UH1OpXjZANxQneNpTjDr5LxQBwtmTcVwj1CwGh10s -Y5vIGCnpLxeAzgnTNrSKDQz08cEbKkhjxTZnJ0YT6xBwWRRPJ3HFJbzWG1Ps7I0e -7n3N6nVx/+zT8NdaybM+/RuTmo0QGeDPFF/hPe4APkr8Gb0GRi8GNw3QWgrQgUa3 -oNw66b2M6J1DGB7LbbrXgV3joS5wPcZaD4uIGorv/CeeGvi+5TlQvmfEHOrrFFCr -pacR331/qCPvvO+2nTsqcMkOUTuUKkgHXsmuseMCQMOPrNtwb3H2sgPR8NgCS/S2 -o3KPZJxfiXXGTeauhxhhlZzwKAT7Zk4HPyFZivXH65shoHX/eUdU5v9bfNW8pk1J -SBZlgSSpRLKOleZB4y1V433+roImNANcFIcue087vtraULUMoUISthi017kCDQRF -xjlhEAgAyDleE6VRurQ11O2A9VYyd/cXbqJolk4PeHSDg4NW2Ry78FGuSNV+87I2 -JoIWeUGulsTZJ20csFp2j9DzjF0jLKVVp6gUE2ZJ8XQKTGzEBJKNKTyUi8HUw9/t -MuYbeHnX9PGrFnUgU+cr7uTmpODv0mtz+ZTSHvEN0o36kWIkl9drloKnoftibEAu -dC6/a58/QDIyqmRMdr+1ypwpMaGhctV8DqT4ybSLjxWkiOTrpzbLoV2HhkL+zKqg -NkTbrpaJ6B4JfSemM0QY3ZgwdvC5viSl8iaZxw61JCunOdOBLsVV10CjryzT8KHd -1PPTgmd4BWVP83hEkHaVsVzIkL1KjwAECwgAp259HGGl4Zd1J50IMj2FVCVddv7A -I4ZYAEKtPEj4EyaeBhPycfQtijEu3ZVmB+LYw0m3jvkSy3dup6XYYsvAp/VL7Cbw -7O9f/uUtj06Vdenh+UM0GZLyfz15JEV0NSJaL5L7eayonhwseJ+kGW+bXfQLgHkW -ae+VFxETu6Vyhv+e6P0s7MKw/7UhCkaQSkBA+Hh7D6IS8N3TCg1huoS0X+BkfL/s -SixYr6l697bRC2/cUu2cmas+hUhbnEAKel2P8Y50dwhc3yqvaRzuD8L4VOd7kHiP -bLgB0j3nMX1CHEH6wmjeiupLRDGPisXkyVIKgexZ7JKspwqH9DDdjgONPohPBBgR -AgAPAhsMBQJS2PADBQkQ1R2SAAoJEG8zkVtlaLfqWU0AniUMsF8RV9nmW1GHMHS8 -wqZrPHDbAJ9A9GHh4cjTsKMmRsY6FDkDm8mExYhPBBgRAgAPAhsMBQJWqJ7LBQkS -w5jfAAoJEG8zkVtlaLfqUDsAoJ+8uAN6QwA2/rTczqOS9X0HBZcWAJoDDzpbIrmO -IXfqVtVIygrSB2irjg== -=49H5 +PohmBBMRAgAmAhsDBgsJCAcDAgQVAggDBBYCAwECHgECF4AFAk9Ki3oFCQ1GuTMA +CgkQbzORW2Vot+oKMQCgxTZ6Gvo6cJsVdVLzUiJPcHD9tW4AnjiOTF6F0G60oPK0 +IxKOjGvVQ+4riEYEEBECAAYFAkXGOXUACgkQXNXaBxV7yV6oTwCgnSEFCs2pAwW5 +LU22AfVDwh9e5AkAn2k0dRoGj2UL/Js4qvf3sBqEw4rriEYEEBECAAYFAkXGOcYA +CgkQIR7qMdg1EfZyDACgyvRXAmV0XUhH1vbNMEG9+sFXaCwAoOQTsk19i3Luy3Pw ++1gDaUeCzeLdiEYEEBECAAYFAkXIMMUACgkQ3L4Y/6A1U7wMMACgg4+AVtovhtY6 +y1qip9uZ8qwbnkkAni269FhHSPKfGGEnfkrN/Q2/3EY7iEYEEBECAAYFAkYNcugA +CgkQp6cLM3ld2XFzGwCffyD/eMhEKCN6j5FCSbb3rhkyR/kAn0PlFtYrTNkrc1dO +ezhvaZZCPBHWiEYEEBECAAYFAkZQmboACgkQVVCoNUmKuAcl1wCdEzFgS3DIgIhY +y6Id5a9EqUjArLkAnArdjXskM952gLuyJjgictCiHdIeiEYEEBECAAYFAkZdvkMA +CgkQw1Ohknblb7ZN8gCgjD/SWG0qBCBD7w19I5kVTijU9j4AmwbPf4wU7hY942tn +1NxUyKwF+edxuQINBEXGOWEQCADIOV4TpVG6tDXU7YD1VjJ39xduomiWTg94dIOD +g1bZHLvwUa5I1X7zsjYmghZ5Qa6WxNknbRywWnaP0POMXSMspVWnqBQTZknxdApM +bMQEko0pPJSLwdTD3+0y5ht4edf08asWdSBT5yvu5Oak4O/Sa3P5lNIe8Q3SjfqR +YiSX12uWgqeh+2JsQC50Lr9rnz9AMjKqZEx2v7XKnCkxoaFy1XwOpPjJtIuPFaSI +5OunNsuhXYeGQv7MqqA2RNuulonoHgl9J6YzRBjdmDB28Lm+JKXyJpnHDrUkK6c5 +04EuxVXXQKOvLNPwod3U89OCZ3gFZU/zeESQdpWxXMiQvUqPAAQLCACnbn0cYaXh +l3UnnQgyPYVUJV12/sAjhlgAQq08SPgTJp4GE/Jx9C2KMS7dlWYH4tjDSbeO+RLL +d26npdhiy8Cn9UvsJvDs71/+5S2PTpV16eH5QzQZkvJ/PXkkRXQ1Ilovkvt5rKie +HCx4n6QZb5td9AuAeRZp75UXERO7pXKG/57o/SzswrD/tSEKRpBKQED4eHsPohLw +3dMKDWG6hLRf4GR8v+xKLFivqXr3ttELb9xS7ZyZqz6FSFucQAp6XY/xjnR3CFzf +Kq9pHO4PwvhU53uQeI9suAHSPecxfUIcQfrCaN6K6ktEMY+KxeTJUgqB7Fnskqyn +Cof0MN2OA40+iE8EGBECAA8CGwwFAk9Ki+YFCQ1GuYUACgkQbzORW2Vot+poJACe +Mx7cSix0y3zIgTvAIty06thlOMUAn1hZdeMtAkWjaKfu8LWk/umBetPI +=49fm -----END PGP PUBLIC KEY BLOCK----- diff --git a/samba.spec b/samba.spec index 232223c..1a7c550 100644 --- a/samba.spec +++ b/samba.spec @@ -120,7 +120,7 @@ BuildRequires: systemd-devel %if 0%{?build_ctdb_pmda} BuildRequires: libpcp-devel %endif -%define samba_ver 4.4.0 +%define samba_ver 4.4.2 %define samba_ver_suffix %nil %if "%{samba_ver_suffix}" == "" %define samba_source_location https://ftp.samba.org/pub/samba/stable/samba-%{version}.tar.gz @@ -141,11 +141,11 @@ BuildRequires: libpcp-devel %else %define build_make_smp_mflags %{?jobs:-j%jobs} %endif -%define SOURCE_TIMESTAMP 3628 +%define SOURCE_TIMESTAMP 3643 %define BRANCH %{version} %global with_mitkrb5 1 %global with_dc 0 -Version: 4.4.0 +Version: 4.4.2 Release: 0 Url: https://www.samba.org/ Obsoletes: samba-gplv3 < %{version} diff --git a/vendor-files.tar.bz2 b/vendor-files.tar.bz2 index 7bac81b..bc5e34a 100644 --- a/vendor-files.tar.bz2 +++ b/vendor-files.tar.bz2 @@ -1,3 +1,3 @@ version https://git-lfs.github.com/spec/v1 -oid sha256:2c842a473d8343a579b4bf733c6bb3898061d5ff5293254ce29633c856cfd316 -size 56046 +oid sha256:3450cfad2e09ff82d820a503274f42def0b9f512d54e823513b6b85241eda636 +size 55830