Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-devel-changes@lists.debian.org> , <debian-experimental-changes@lists.debian.org>
Subject: Accepted samba 2:4.18.1+dfsg-1~exp1 (source) into experimental
Date: Wed, 29 Mar 2023 17:09:04 +0000
Signed by: Michael Tokarev <mjt@debian.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 29 Mar 2023 17:59:17 +0300
Source: samba
Architecture: source
Version: 2:4.18.1+dfsg-1~exp1
Distribution: experimental
Urgency: high
Maintainer: Debian Samba Maintainers <pkg-samba-maint@lists.alioth.debian.org>
Changed-By: Michael Tokarev <mjt@tls.msk.ru>
Changes:
 samba (2:4.18.1+dfsg-1~exp1) experimental; urgency=high
 .
   * upstream stable/security/bugfix release, fixing the following issues:
     o CVE-2023-0225: An incomplete access check on dnsHostName allows
       authenticated but otherwise unprivileged users to delete this
       attribute from any object in the directory.
       https://www.samba.org/samba/security/CVE-2023-0225.html
     o CVE-2023-0922: The Samba AD DC administration tool, when operating
       against a remote LDAP server, will by default send new or reset
       passwords over a signed-only connection.
       https://www.samba.org/samba/security/CVE-2023-0922.html
     o CVE-2023-0614: Fix in 4.6.16, 4.7.9, 4.8.4 and 4.9.7 for CVE-2018-10919
       Confidential attribute disclosure via LDAP filters was insufficient and
       an attacker may be able to obtain confidential BitLocker recovery keys
       from a Samba AD DC.  Installations with such secrets in their Samba AD
       should assume they have been obtained and need replacing.
       https://www.samba.org/samba/security/CVE-2023-0614.html
     Closes: CVE-2023-0225 CVE-2023-0922 CVE-2023-0614
   * update libldb symbols and versions
Checksums-Sha1:
 b8aad0eaa651d3c47417d71f55bd03ecbd0e54eb 4418 samba_4.18.1+dfsg-1~exp1.dsc
 6a7c1726fd868f04219388b20f0dd1308a21c354 24609372 samba_4.18.1+dfsg.orig.tar.xz
 f531400f274039b2efd692677c777e13baeb7807 269596 samba_4.18.1+dfsg-1~exp1.debian.tar.xz
 d21dd57e8084147101c09136ea6cd5b9d8dc478a 5979 samba_4.18.1+dfsg-1~exp1_source.buildinfo
Checksums-Sha256:
 5cbd70153db1a498eeae609bb305fe4f6314c8e9f0aa1f295aa4de313efbf744 4418 samba_4.18.1+dfsg-1~exp1.dsc
 cc856d6f07a1bbe428994b429a1ff9e5beebfd4f6717481084e3b19b79f4fd5e 24609372 samba_4.18.1+dfsg.orig.tar.xz
 239b15e9e46ae1f6d326f3da2a266cc26fa71cb32614ca8d02e8fa00a0c5375d 269596 samba_4.18.1+dfsg-1~exp1.debian.tar.xz
 d84b5997368303581e2fcd861ab46b324b0cd34403dfb168acc70ed1ee8e4bd2 5979 samba_4.18.1+dfsg-1~exp1_source.buildinfo
Files:
 34028e4a7412a834d9ef904f7f2da683 4418 net optional samba_4.18.1+dfsg-1~exp1.dsc
 271645a5abe9d8e7855cffb157eaaf2c 24609372 net optional samba_4.18.1+dfsg.orig.tar.xz
 d5ea21f20e752aa29022cb2985bb3b20 269596 net optional samba_4.18.1+dfsg-1~exp1.debian.tar.xz
 a4e455bb1a1d66d99d2e344ebdb1deff 5979 net optional samba_4.18.1+dfsg-1~exp1_source.buildinfo

-----BEGIN PGP SIGNATURE-----

iQFDBAEBCgAtFiEEe3O61ovnosKJMUsicBtPaxppPlkFAmQkaSQPHG1qdEB0bHMu
bXNrLnJ1AAoJEHAbT2saaT5ZNhcH/A8arvpVPRX3k2lw1JcNcwoHtXenld+WA+Ti
mSYnpr14agzg3KfXJQb4J1Tj1ptbGS+xLrrxB9B9SD9sPK6d/1vH2QKv58hBDNMm
dpP9DvQSbtPD4NGYvATx7hvdJhQndmS/7YmJaoBjU2pilGbtnVYMR4IJVJaNjz1K
iZAzt01HINUApWUQpCudAxxyddCnlakC+N/lstWd5oKQbzDafhH1miZ4cA+lo499
Fj70DxzTPH76xo2YMfeo4CEf9yyb7ihHe/KunoWW6BWIrVZVQxNGvlUyfGmvpi9d
2Q8j0ENMMFNcnND+/a45BVIDTvMf8lv+MSfrIY/RZsvZQvuxBiQ=
=joJs
-----END PGP SIGNATURE-----

News for package samba