-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Mon, 08 Apr 2019 23:50:58 +0200 Source: samba Binary: samba samba-libs samba-common samba-common-bin smbclient samba-testsuite registry-tools libparse-pidl-perl samba-dev samba-doc python-samba samba-dsdb-modules samba-vfs-modules libpam-smbpass libsmbclient libsmbclient-dev winbind libpam-winbind libnss-winbind samba-dbg libwbclient0 libwbclient-dev ctdb Architecture: source amd64 all Version: 2:4.2.14+dfsg-0+deb8u12 Distribution: jessie-security Urgency: medium Maintainer: Debian Samba Maintainers <pkg-samba-maint@lists.alioth.debian.org> Changed-By: Mike Gabriel <sunweaver@debian.org> Description: ctdb - clustered database to store temporary data libnss-winbind - Samba nameservice integration plugins libpam-smbpass - pluggable authentication module for Samba libpam-winbind - Windows domain authentication integration plugin libparse-pidl-perl - IDL compiler written in Perl libsmbclient - shared library for communication with SMB/CIFS servers libsmbclient-dev - development files for libsmbclient libwbclient-dev - Samba winbind client library - development files libwbclient0 - Samba winbind client library python-samba - Python bindings for Samba registry-tools - tools for viewing and manipulating the Windows registry samba - SMB/CIFS file, print, and login server for Unix samba-common - common files used by both the Samba server and client samba-common-bin - Samba common files used by both the server and the client samba-dbg - Samba debugging symbols samba-dev - tools for extending Samba samba-doc - Samba documentation samba-dsdb-modules - Samba Directory Services Database samba-libs - Samba core libraries samba-testsuite - test suite from Samba samba-vfs-modules - Samba Virtual FileSystem plugins smbclient - command-line SMB/CIFS clients for Unix winbind - service to resolve user and group information from Windows NT ser Changes: samba (2:4.2.14+dfsg-0+deb8u12) jessie-security; urgency=medium . * Non-maintainer upload by the LTS team. * CVE-2019-3880: s3: rpc: winreg: Remove implementations of SaveKey/RestoreKey. * CVE-2018-1057: - s4:dsdb/tests: add a test for password change with empty delete - s4:dsdb/password_hash: add a helper variable for LDB_FLAG_MOD_TYPE - s4:dsdb/password_hash: add a helper variable for passwordAttr->num_values - s4:dsdb/acl: only call dsdb_acl_debug() if we checked the acl in acl_check_password_rights() - s4:dsdb/acl: remove unused else branches in acl_check_password_rights() - s4:dsdb/acl: check for internal controls before other checks - vulnerability: s4:dsdb/acl: add check for DSDB_CONTROL_PASSWORD_HASH_VALUES_OID control - vulnerability: s4:dsdb/acl: add a NULL check for talloc_new() in acl_check_password_rights() - vulnerability: s4/dsdb: correctly detect password resets - vulnerability: s4:dsdb/acl: run password checking only once - vulnerability: s4:dsdb/samdb: define DSDB_CONTROL_PASSWORD_ACL_VALIDATION_OID control - s4:dsdb: use DSDB_CONTROL_PASSWORD_ACL_VALIDATION_OID - vulnerability: s4:dsdb/acl: changing dBCSPwd is only allowed with a control * CVE-2018-1050: s3: RPC: spoolss server. Protect against null pointer derefs. * CVE-2017-9461: s3: smbd: Don't loop infinitely on bad-symlink resolution. Checksums-Sha1: b72c5a1604b3e9187ffad01bc8d00610a1cd998e 4221 samba_4.2.14+dfsg-0+deb8u12.dsc 636584f1e88276a5dc1eed99845063660e493704 20862908 samba_4.2.14+dfsg.orig.tar.gz 51ebd2c437fa7e8a9eb0f93f6508167281fdf208 292636 samba_4.2.14+dfsg-0+deb8u12.debian.tar.xz a0b63709f15d0aef4cca5efc77e029acdfc5f2ec 1036448 samba_4.2.14+dfsg-0+deb8u12_amd64.deb 9927c511f965b3ca4539baf61c2dd1a0228496f6 5105974 samba-libs_4.2.14+dfsg-0+deb8u12_amd64.deb 43d2282165b7ed058f18ec45dd54ab9d7c754f82 271356 samba-common_4.2.14+dfsg-0+deb8u12_all.deb a57b367f2ff0ee4d953fd92b7cf58bb60179f30d 617282 samba-common-bin_4.2.14+dfsg-0+deb8u12_amd64.deb 4da0dde448136d4c45067cbc8342b8eb18966d52 345482 smbclient_4.2.14+dfsg-0+deb8u12_amd64.deb c38b969ea0ba4533704da801a6ccbc43ad8c00a3 1572400 samba-testsuite_4.2.14+dfsg-0+deb8u12_amd64.deb 0cefb4bd06b7e116137e415a0f242d96596f7df5 124700 registry-tools_4.2.14+dfsg-0+deb8u12_amd64.deb 2d59753cb2ba869525d9ee087372b879a54a71c3 186166 libparse-pidl-perl_4.2.14+dfsg-0+deb8u12_amd64.deb 0fd3ed71e554bbe200731a3ecea586b46ddf333b 337130 samba-dev_4.2.14+dfsg-0+deb8u12_amd64.deb 327b532fc3a7053fb4e737e343bd1964ba2cfdb8 322540 samba-doc_4.2.14+dfsg-0+deb8u12_all.deb a3aef0ea0d422fd481c57e618304cf4ef919f320 1018522 python-samba_4.2.14+dfsg-0+deb8u12_amd64.deb 19f0f0e571f4879cc21ac72f43cbbc135f48e0a9 310334 samba-dsdb-modules_4.2.14+dfsg-0+deb8u12_amd64.deb d0eb4f0dfbb6bd28ccbbbf1ea1f5cf0209f9accc 331678 samba-vfs-modules_4.2.14+dfsg-0+deb8u12_amd64.deb 8db6085a9d22449b20e34146312f5ed01384121c 112910 libpam-smbpass_4.2.14+dfsg-0+deb8u12_amd64.deb dd3179c50db0303c595352411c0a3d6a1054243b 148344 libsmbclient_4.2.14+dfsg-0+deb8u12_amd64.deb 5677e6b70e6d2f9a0a1c5c64ff5122f2e2716c9e 135804 libsmbclient-dev_4.2.14+dfsg-0+deb8u12_amd64.deb 6a267e9de30afb62b65f24679436bee3b431db62 496820 winbind_4.2.14+dfsg-0+deb8u12_amd64.deb 09f8a3e958dc003baee519a29f9ef77f81edcef5 124054 libpam-winbind_4.2.14+dfsg-0+deb8u12_amd64.deb 12bbada8ed203bc87d04a67c99793fce2ea5b3e3 108498 libnss-winbind_4.2.14+dfsg-0+deb8u12_amd64.deb d7faf32dd9ee294601a99a44fb30ffe779eb0593 29564750 samba-dbg_4.2.14+dfsg-0+deb8u12_amd64.deb d4238051d219d5421731b2d1c8a2b1d29aad2fdf 123012 libwbclient0_4.2.14+dfsg-0+deb8u12_amd64.deb 07317d6d3251e90a520fb1a1062faf349240999a 108242 libwbclient-dev_4.2.14+dfsg-0+deb8u12_amd64.deb 202e2c73af898164a4745c3ec7048185b54158b9 513836 ctdb_4.2.14+dfsg-0+deb8u12_amd64.deb Checksums-Sha256: 261a7bc74a28e5098ffc09cc785fc564e272a73122881b814471996b7b0c1470 4221 samba_4.2.14+dfsg-0+deb8u12.dsc 9beca5ea39f4e61798bb05748abfdd0650c85b6381b5531b372f7757635e4264 20862908 samba_4.2.14+dfsg.orig.tar.gz cef33d92cdb85556273c4b25149eb86efe906751592812715edbfe369e487de2 292636 samba_4.2.14+dfsg-0+deb8u12.debian.tar.xz 93728d3432bffef04a1cebadb109caf90200f8f5edb0f3334b78cfc64632adf6 1036448 samba_4.2.14+dfsg-0+deb8u12_amd64.deb 2867934a41d956b3e89f44647161db51fa84568a09a275ab293a946374c10f3f 5105974 samba-libs_4.2.14+dfsg-0+deb8u12_amd64.deb 30b0152da98c4120fe4f11495762df7b2f8f77c2f5dd375ea033cddac6ddb7e2 271356 samba-common_4.2.14+dfsg-0+deb8u12_all.deb 6f2484c8482d810e63dcc99617c1c69eb47a6c568902a320f695c4c6e417d7b7 617282 samba-common-bin_4.2.14+dfsg-0+deb8u12_amd64.deb a2c96a0b6aadd305d8d1fc5ca9d994b45fd9a26e1dfbb7dc34910aef8c31abcd 345482 smbclient_4.2.14+dfsg-0+deb8u12_amd64.deb 30b6c88d600663ab93ea4a1213e4813b96b47ff22c3190dcf58d047e4ce02091 1572400 samba-testsuite_4.2.14+dfsg-0+deb8u12_amd64.deb 8b7b25794674f63c5af3ae38ddc3f9911c3c3e1a6013ad4c2e6595c660fc7e04 124700 registry-tools_4.2.14+dfsg-0+deb8u12_amd64.deb 28767ebc4df515f4ce2dcb85ed109eee1de46412dc5d77ef3aaecbb3344454bc 186166 libparse-pidl-perl_4.2.14+dfsg-0+deb8u12_amd64.deb 45f7ca5ee44ce1d5a30b2513fbad704b50a75a63bfb22825ccf9aa707a2d7fce 337130 samba-dev_4.2.14+dfsg-0+deb8u12_amd64.deb 6376d6c28f4b4b3d35149ca49456010526bcadce3cdf1ee72bf4673362ade833 322540 samba-doc_4.2.14+dfsg-0+deb8u12_all.deb 3c60b2a7d86148555a6f37f9fa63c64c91e9c065d0bf846e388b634a7f215544 1018522 python-samba_4.2.14+dfsg-0+deb8u12_amd64.deb a7c11cb5302623b685d330fb3b999543200f4b31116e9dda12ee2cf8ce298929 310334 samba-dsdb-modules_4.2.14+dfsg-0+deb8u12_amd64.deb 91e1e76eb9d5e54dd444a8ca812e98657816971b2f69ba19b9177b65e991e4e0 331678 samba-vfs-modules_4.2.14+dfsg-0+deb8u12_amd64.deb 47d5f8d01f2bc72d20efe46de49992e543bd37bdb7af8be7d3233cf58cc9d2e0 112910 libpam-smbpass_4.2.14+dfsg-0+deb8u12_amd64.deb 7316ba6af15fbf35262ad70af09f0906c8ee26303a5507a0a8b4e49e4ae325aa 148344 libsmbclient_4.2.14+dfsg-0+deb8u12_amd64.deb b770362b64018aed0ef69928e698c78476a3fcbd767e6908e1cc5bfd0d83a502 135804 libsmbclient-dev_4.2.14+dfsg-0+deb8u12_amd64.deb 3122f9ed62de9f09d12c31f89a69d5f0d9ee7c7c42cb88f47ad8cc4d03e47cf7 496820 winbind_4.2.14+dfsg-0+deb8u12_amd64.deb 298a58113e074b1c0fd1a6c3a66d0bfe60e1eb96c1395565cc797259abe5638b 124054 libpam-winbind_4.2.14+dfsg-0+deb8u12_amd64.deb ae6a20fb05578e1f4923d4c5a6f1ceeca6a1f3877553bc0d54a3f45f57e52235 108498 libnss-winbind_4.2.14+dfsg-0+deb8u12_amd64.deb 1e7334c5983a863296f5102ba0ec11813e128776e7c97af489de89b14cd12f90 29564750 samba-dbg_4.2.14+dfsg-0+deb8u12_amd64.deb 88d11cd9429cc323134c490db88d913ea8beea4aa64845c41ad68a08b8e86f76 123012 libwbclient0_4.2.14+dfsg-0+deb8u12_amd64.deb e92a8a9139e25ee7dc52c008d7148a8a16753db9e71a89e639306e5dbb82b1f4 108242 libwbclient-dev_4.2.14+dfsg-0+deb8u12_amd64.deb c9827e93abcaf3f525f6e2f0c62619c31653dc25f613c4e8fcf459fad81ed631 513836 ctdb_4.2.14+dfsg-0+deb8u12_amd64.deb Files: e62f0b6388c9df2c5a9912d80a1f4770 4221 net optional samba_4.2.14+dfsg-0+deb8u12.dsc c76527d80c6c7c1c8ea7bdbeba35c073 20862908 net optional samba_4.2.14+dfsg.orig.tar.gz 1d60f099f4862827de42a5d09c353c85 292636 net optional samba_4.2.14+dfsg-0+deb8u12.debian.tar.xz ca87f6f489e009f5a2f2e83131d19de8 1036448 net optional samba_4.2.14+dfsg-0+deb8u12_amd64.deb 9859f19b874a8641479ff98b9c613bc0 5105974 libs optional samba-libs_4.2.14+dfsg-0+deb8u12_amd64.deb e2c46b2653612c9905e78233bc7fe32c 271356 net optional samba-common_4.2.14+dfsg-0+deb8u12_all.deb 2dd1de244ae4023469450a9b1d39fcd4 617282 net optional samba-common-bin_4.2.14+dfsg-0+deb8u12_amd64.deb 63b10f21780668e63a636a6e1da646e3 345482 net optional smbclient_4.2.14+dfsg-0+deb8u12_amd64.deb 2f22de8c40eee72547f512756b6f105c 1572400 net optional samba-testsuite_4.2.14+dfsg-0+deb8u12_amd64.deb a5dabc56c9a07f8d5f32a2be03a56f26 124700 net optional registry-tools_4.2.14+dfsg-0+deb8u12_amd64.deb 8ad377534bf03c7d088ae396e17522c4 186166 perl optional libparse-pidl-perl_4.2.14+dfsg-0+deb8u12_amd64.deb 1ea352b0d640dccc490fdd5038aec27d 337130 devel optional samba-dev_4.2.14+dfsg-0+deb8u12_amd64.deb 05fb961c3fa20974e3b8fb40d8e051e9 322540 doc optional samba-doc_4.2.14+dfsg-0+deb8u12_all.deb 08e1be21450d7ff8454fce37813acc65 1018522 python optional python-samba_4.2.14+dfsg-0+deb8u12_amd64.deb 8b90ab52df7d7f17917c5f794e68613b 310334 libs optional samba-dsdb-modules_4.2.14+dfsg-0+deb8u12_amd64.deb 2764565e6180077dce49e14558115a43 331678 net optional samba-vfs-modules_4.2.14+dfsg-0+deb8u12_amd64.deb a44e93314bedf1deec15d48397006a80 112910 admin extra libpam-smbpass_4.2.14+dfsg-0+deb8u12_amd64.deb d553815018d4f373feac697ce0d27440 148344 libs optional libsmbclient_4.2.14+dfsg-0+deb8u12_amd64.deb 14150628f9ae0dee30e0768049f525d9 135804 libdevel extra libsmbclient-dev_4.2.14+dfsg-0+deb8u12_amd64.deb 45e31affae0aaa45cfcf2701a9c96ac1 496820 net optional winbind_4.2.14+dfsg-0+deb8u12_amd64.deb c79b98fb63f764bec9107970fe51f29b 124054 net optional libpam-winbind_4.2.14+dfsg-0+deb8u12_amd64.deb ee70f736185f480cffd47760e0d21959 108498 net optional libnss-winbind_4.2.14+dfsg-0+deb8u12_amd64.deb 5a5d500f5c30a39fe71ad1ed7ed768f2 29564750 debug extra samba-dbg_4.2.14+dfsg-0+deb8u12_amd64.deb cbaf3c48646ae8c517162a96d8888193 123012 libs optional libwbclient0_4.2.14+dfsg-0+deb8u12_amd64.deb edbb79c89bacba20752a16a826e4d31b 108242 libdevel optional libwbclient-dev_4.2.14+dfsg-0+deb8u12_amd64.deb 7217a221ae061f0842be02957c233b99 513836 net optional ctdb_4.2.14+dfsg-0+deb8u12_amd64.deb -----BEGIN PGP SIGNATURE----- iQJJBAEBCAAzFiEEm/uu6GwKpf+/IgeCmvRrMCV3GzEFAlystxsVHHN1bndlYXZl ckBkZWJpYW4ub3JnAAoJEJr0azAldxsxBggP/RAspQpbY7Mq7nlQUr9sGibkcCXd Efqhe3aNSqNh7i/UdNQj57HlLnw8GEQAcqiOe/hFFsa3umY96LduP9zSZzloUwEa uB2PM4V/oj7h9E+62UvnfUD+yqPGUaPnbw+6NyxVJT8tZl6sIrEs+DLoBQ4sRRh9 5i6EL6LprVyQUXjDMeNwyX2eNuSb02pCEFJuw2xffjdFVmcp5Vje9nM0nSOff+hw 1SLnBFOg2oe4foPcXly/ZkIUFVCWwp+1OS9ICnowvael9PuLcd3kepT7B1ijnMF0 rhpGX8DUFeLmVF4J2G1zIC9dndri6rF03YyTJn7GQlJnpooEEsId7ZfZ0ZbhoXG2 kLH85KAMcDpwYlZjGDuK8six5AzJlJD3vg3kI7BhTY1cpYA2rzvMus5EIG1Set/H gaWRha/kRm8CITI1wXnB8k8vaq0HLaFAU/V3QWqHO6FNVr8gzpNml5mQ9Bi8lW1X 85bi0w5ks+TrW5PNBeapvIzEIwwidnKmo6QjWmVNrfMxNWSdzyxChgv8BYHucw+g /czIjPDKRP61T7PmAQyVyknlkewJiEBMwWcYJLr2v/oNMHEkAXAYqS6EtVsjRCs8 rU0qaGqgQYvnOUG98C0fH7Vq554XE3qiU7RHGgXamUhBTUx6XpxZB70x6d7WYNyl weMJu/jcTFaNmtq2 =+Par -----END PGP SIGNATURE-----
