-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 08 Apr 2016 16:23:09 +1200 Source: samba Binary: samba samba-common-bin samba-common samba-tools smbclient swat samba-doc samba-doc-pdf libpam-smbpass libsmbclient libsmbclient-dev winbind libpam-winbind libnss-winbind samba-dbg libwbclient0 libwbclient-dev Architecture: source amd64 all Version: 2:3.6.6-6+deb7u8 Distribution: wheezy-security Urgency: high Maintainer: Debian Samba Maintainers <pkg-samba-maint@lists.alioth.debian.org> Changed-By: Andrew Bartlett <abartlet+debian@catalyst.net.nz> Description: libnss-winbind - Samba nameservice integration plugins libpam-smbpass - pluggable authentication module for Samba libpam-winbind - Windows domain authentication integration plugin libsmbclient - shared library for communication with SMB/CIFS servers libsmbclient-dev - development files for libsmbclient libwbclient-dev - Samba winbind client library - development files libwbclient0 - Samba winbind client library samba - SMB/CIFS file, print, and login server for Unix samba-common - common files used by both the Samba server and client samba-common-bin - common files used by both the Samba server and client samba-dbg - Samba debugging symbols samba-doc - Samba documentation samba-doc-pdf - Samba documentation in PDF format samba-tools - Samba testing utilities smbclient - command-line SMB/CIFS clients for Unix swat - Samba Web Administration Tool winbind - Samba nameservice integration server Changes: samba (2:3.6.6-6+deb7u8) wheezy-security; urgency=high . * Security update + Fixes: - CVE-2015-5370 (Multiple errors in DCE-RPC code) - CVE-2016-2110 (Man in the middle attacks possible with NTLMSSP) - CVE-2016-2111 (NETLOGON Spoofing Vulnerability) - CVE-2016-2112 (LDAP client and server don't enforce integrity) - CVE-2016-2115 (SMB IPC traffic is not integrity protected) - CVE-2016-2118 (SAMR and LSA man in the middle attacks possible) + The Samba 3.6 patches have been backported by Andreas Schneider (Red Hat) and Ralph Böhme (SerNet). Thanks goes to Stefan Metzmacher for finding and fixing the CVEs in the first place. Thanks for the help with backporting to Günther Deschner (Red Hat) and Aurélien Aptel (SUSE). Checksums-Sha1: 2c8f87027f06e4e6f038f6e09731935bb465994b 3089 samba_3.6.6-6+deb7u8.dsc f850b892b0c99d0627eb38c684fc855a960da0aa 519603 samba_3.6.6-6+deb7u8.debian.tar.gz 244fe40897153828e8c8ac29b6d0fb868f698efb 4348534 samba_3.6.6-6+deb7u8_amd64.deb 74d18681d1489a23c5f4c635c7858632f1a5cf81 3886200 samba-common-bin_3.6.6-6+deb7u8_amd64.deb 429bc4347e9de671994d7e97459492547ce96eb7 241126 samba-common_3.6.6-6+deb7u8_all.deb 34fcfd086e163ca25518a008f0f49b7465e6fbb7 5583490 samba-tools_3.6.6-6+deb7u8_amd64.deb cca8007da37cecccca486924b5bdce257a8e3898 5960462 smbclient_3.6.6-6+deb7u8_amd64.deb 41321a88d5ee0d119aee5798d2ce7b06a9d711f1 1774122 swat_3.6.6-6+deb7u8_amd64.deb 66ed87d0efc999b9236338b87e33c3a7b129fe43 5786970 samba-doc_3.6.6-6+deb7u8_all.deb 8a2a7a3793bfbac0a6ba3a705f2e1d6473bf2404 7067582 samba-doc-pdf_3.6.6-6+deb7u8_all.deb bf7dce1e2f6b75700ff2484e582d6024396f6314 697346 libpam-smbpass_3.6.6-6+deb7u8_amd64.deb f847b715f30d109cf132bcfd38092434f84af652 1567090 libsmbclient_3.6.6-6+deb7u8_amd64.deb d50c0faeea82ecdf90367834513b4953342eccee 1901012 libsmbclient-dev_3.6.6-6+deb7u8_amd64.deb 7aa4c055e1762066e5ace655562f405ddc9fd5c1 2698792 winbind_3.6.6-6+deb7u8_amd64.deb 46bbb0c8322847898bbd434cfd0bae45e1a36b4e 103200 libpam-winbind_3.6.6-6+deb7u8_amd64.deb 82b55fc04e6a7ca227c80c777ba93044a4d1b28f 576064 libnss-winbind_3.6.6-6+deb7u8_amd64.deb 5485cb7c0936a68e9be36ee5bf9840e7fb7742ed 76446422 samba-dbg_3.6.6-6+deb7u8_amd64.deb 5e6ded7400cd9025a48ff203aaa5424965b10446 96664 libwbclient0_3.6.6-6+deb7u8_amd64.deb 871ea5bdf8179359918284bfbf066f2233db78ff 84242 libwbclient-dev_3.6.6-6+deb7u8_amd64.deb Checksums-Sha256: ccf9bf7bb7970a5ac53f3629f9d18a2f28682ecd4ea67a3aea5811f44530c140 3089 samba_3.6.6-6+deb7u8.dsc db73b7afcc1eff5513d674ce7a7903919f66027e6879334876606f77680f2963 519603 samba_3.6.6-6+deb7u8.debian.tar.gz 4be37a516c0d309345c327f2ad0381589527bf303cbab5c6f1f2589a40c949c7 4348534 samba_3.6.6-6+deb7u8_amd64.deb bbd5c7c31deb01865ef401fbb15da9c3fac2346f1ec4c0557a5167790b65d707 3886200 samba-common-bin_3.6.6-6+deb7u8_amd64.deb 4cc2280ef6f02fa89431537232e95cefd6f5e9e55300e945178f7a11443ed77e 241126 samba-common_3.6.6-6+deb7u8_all.deb 61f6665aac3d243102ae21f6b2221dae16ed816c11cf00abec9d175ea4ba50f4 5583490 samba-tools_3.6.6-6+deb7u8_amd64.deb e88af204c1e01b746230ddb40671ea1f7ebdb1c0cdad855a1d8e28e6375d94db 5960462 smbclient_3.6.6-6+deb7u8_amd64.deb f03873e437ce420bfce0b64cd428b197deefb8dadf3d55523db88d1dc3ae4e99 1774122 swat_3.6.6-6+deb7u8_amd64.deb 68aa86d20f11f90ec5cb21c348dba2d097d4ccf3897b0aa8fe15a601e06029a1 5786970 samba-doc_3.6.6-6+deb7u8_all.deb 23895c579b3433c4c69888d096190e0035246662549d351bd422d73ef69964f3 7067582 samba-doc-pdf_3.6.6-6+deb7u8_all.deb fb1b6d1ffbdb7423262db9db62dd00909e405ebfb3c0a314c3d03da1eb71dda5 697346 libpam-smbpass_3.6.6-6+deb7u8_amd64.deb 2579ea243905b5edd05e8b4213c7315e351ddebd33c7ead3e3c9a945f936a1a4 1567090 libsmbclient_3.6.6-6+deb7u8_amd64.deb cb19484c1d4f6f7eaf710a73e4c4a370a4f2843a90e947be473e75057cc88bd4 1901012 libsmbclient-dev_3.6.6-6+deb7u8_amd64.deb 001b04888ede59452e24d319cbe854afafa1b0d32a9e9692cd295d137c9cbb61 2698792 winbind_3.6.6-6+deb7u8_amd64.deb fee449b61cb61fc7e1501553a3bbd6d8f628a64e55bbc696c69735f484f670e5 103200 libpam-winbind_3.6.6-6+deb7u8_amd64.deb 7b02e35fbb6f3e5a40868c7ec31a49f3459001874e05b1ba1731b07c5b0c727d 576064 libnss-winbind_3.6.6-6+deb7u8_amd64.deb e2386443741acbbe7b42e24ca123405530785338b3effb98071991818867f942 76446422 samba-dbg_3.6.6-6+deb7u8_amd64.deb 2652e6f08ba687b3864fbdda253a185e9e5e3b207f2ea0fb0ed29c2b124ffd63 96664 libwbclient0_3.6.6-6+deb7u8_amd64.deb a0bd0cbd26c41498c076b5101c194e6452628478ba666024706785a077a8a415 84242 libwbclient-dev_3.6.6-6+deb7u8_amd64.deb Files: 773f75aa7f9c6d64a9c6248697cdd998 3089 net optional samba_3.6.6-6+deb7u8.dsc 5bf6a4c0f73c3e6827acc24df88e9952 519603 net optional samba_3.6.6-6+deb7u8.debian.tar.gz 9cd0e1305c5c5e032354e6d84cd925be 4348534 net optional samba_3.6.6-6+deb7u8_amd64.deb 86892a1423d02abb9230aaccd914eb37 3886200 net optional samba-common-bin_3.6.6-6+deb7u8_amd64.deb e8dd542fff50dbf1a811d08aa3caeb5b 241126 net optional samba-common_3.6.6-6+deb7u8_all.deb b1d607cc62aa8774231ad86600728692 5583490 net optional samba-tools_3.6.6-6+deb7u8_amd64.deb a4ac4d037f760c6d23fd57a4cf7a3455 5960462 net optional smbclient_3.6.6-6+deb7u8_amd64.deb 7123c7dab4e7b8036d6b1a60a292e1b9 1774122 net optional swat_3.6.6-6+deb7u8_amd64.deb bab518708502e39200471481d1d88a88 5786970 doc optional samba-doc_3.6.6-6+deb7u8_all.deb fb063cf365130696f6b375a4bf638ed2 7067582 doc optional samba-doc-pdf_3.6.6-6+deb7u8_all.deb fb523123c735856d007592a3fbbdc0c5 697346 admin extra libpam-smbpass_3.6.6-6+deb7u8_amd64.deb 9b64126dd0b8f8f53664276b70f04eea 1567090 libs optional libsmbclient_3.6.6-6+deb7u8_amd64.deb 8b1d8e5938d8327f5d8aacefd2a3657f 1901012 libdevel extra libsmbclient-dev_3.6.6-6+deb7u8_amd64.deb 92318b1f0cbec669158483d2ab2ea7d3 2698792 net optional winbind_3.6.6-6+deb7u8_amd64.deb b781a873ab30e5d676c00797ad243f5e 103200 net optional libpam-winbind_3.6.6-6+deb7u8_amd64.deb 881b0c61493b41755d2bc0ba4318cb2b 576064 net optional libnss-winbind_3.6.6-6+deb7u8_amd64.deb f5f6eec8bb3c225c92c136b4ae9f92de 76446422 debug extra samba-dbg_3.6.6-6+deb7u8_amd64.deb 7ba2bb3f31c378cb03eee809263f721a 96664 libs optional libwbclient0_3.6.6-6+deb7u8_amd64.deb 503fe67c007891a9fdb1df95fd163ed4 84242 libdevel optional libwbclient-dev_3.6.6-6+deb7u8_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCgAGBQJXDRDcAAoJEAVMuPMTQ89EnMAQAJgygBRR6ESbnOEiaKtXD9Nq UM99lhiu18FdbXJxdHt0+0W9SzPz14fP7B7lDcFj81NNt+m7imT90UqPA+qtY/eB jdmcQpqiKSScSFU6/mqjbWIwtDSLIbrnDRH15AhZuo4n/l1wLPDasK+BUfZqxO6c Bixp1cwckZ3VBtSOs8mkfoTs0Rk4nFLmfOv8Z7gVxlPk2W8nX4rLY56aJ0W9nqtL fOBC+YmkoZ0ROdoOq3otDqtW8sbpYeTREJJJYvLhpkUTbb/YdBBZp211HHRTeYOm pfclz9r9M8JAJu6t04duXR/EWq8kmMEtG3Il3TzsHratVpl8cqVkdGCObMPJsLYH 142spMOYhF0EQ/0K8gmRnxGHyqrOseXi933qlUN0dMoWNLERFRUTKYO9jvB+sd74 JN2fL5mqo9HRz5czRfDA0/o1hrfAFjUAGHuU8xVJ2l3q7A4Sj5QA9WfqPRePVsIv JvZU5/F0C0+3J/yFe2eoKVWLsf+Ga5n7/3JBOoGyvyEz0YRcXvEILpn4YTnPBwZw +pb/Ar3BmgOnEXaGtkjBBwL4RrtAGMgqshKXi0hr5LTX+Q4TsIdnCs7WL8E3H9jW 0Pcxz6Ba/DaNvI2ePYuhhsuSiwaBzd7tdqrXct97ZFuv86Epz4QaYE6ia8SGgHlM SMNzUjRPhNnxUQLEPvcE =/wIl -----END PGP SIGNATURE-----