Accepting request 447039 from home:jmcdough:next

Update to 4.5.3 for CVE-2016-2123 (bsc#1014437) CVE-2016-2125 (bsc#1014441) CVE-2016-2126 (bsc#1014442) OBS-URL: https://build.opensuse.org/request/show/447039 OBS-URL: https://build.opensuse.org/package/show/network:samba:STABLE/samba?expand=0&rev=549
2016-12-19 15:42:31 +00:00
parent a0add68146
commit ee3db2b8d2
8 changed files with 58 additions and 36 deletions
--- a/samba.changes
+++ b/samba.changes
@@ -1,3 +1,20 @@
+-------------------------------------------------------------------
+Mon Dec 19 19:11:20 UTC 2016 - jmcdonough@suse.com
+
+- Update to 4.5.3
+  + Heap-based Buffer Overflow Remote Code Execution Vulnerability;
+    CVE-2016-2123; (bso#12409); (bsc#1014437).
+  + Don't send delegated credentials to all servers; CVE-2016-2125;
+  (bso#12445); (bsc#1014441).
+  + denial of service due to a client triggered crash in the winbindd
+    parent process; CVE-2016-2126; (bso#12446); (bsc#1014442).
+- 4.5.1 and 4.5.2 updates
+  + various streams vfs fixes
+  + various printing fixes
+  + ntlm_auth: do not map explicitly empty domain
+  + various stability fixes in smbd
+  + match file compression ReFS behavior
+
 -------------------------------------------------------------------
 Mon Sep 26 17:55:13 UTC 2016 - nopower@suse.com