svn commit: samba r25076 - in branches/SAMBA_3_0_RELEASE: . source
source/nsswitch
jerry at samba.org
jerry at samba.org
Tue Sep 11 14:28:41 GMT 2007
Author: jerry
Date: 2007-09-11 14:28:37 +0000 (Tue, 11 Sep 2007)
New Revision: 25076
WebSVN: http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=rev&root=samba&rev=25076
Log:
Checking in patches for 3.0.26
Modified:
branches/SAMBA_3_0_RELEASE/WHATSNEW.txt
branches/SAMBA_3_0_RELEASE/source/VERSION
branches/SAMBA_3_0_RELEASE/source/nsswitch/idmap_ad.c
Changeset:
Modified: branches/SAMBA_3_0_RELEASE/WHATSNEW.txt
===================================================================
--- branches/SAMBA_3_0_RELEASE/WHATSNEW.txt 2007-09-11 10:29:19 UTC (rev 25075)
+++ branches/SAMBA_3_0_RELEASE/WHATSNEW.txt 2007-09-11 14:28:37 UTC (rev 25076)
@@ -1,3 +1,34 @@
+ ==============================
+ Release Notes for Samba 3.0.26
+ Sep 11, 2007
+ ==============================
+
+This is a security release of Samba 3.0 to address
+
+ o CVE-2007-4138
+ Versions: All Samba 3.0.25 releases
+ Incorrect primary group assignment for
+ domain users using the rfc2307 or sfu
+ winbind nss info plugin.
+
+The original security announcement for this and past advisories
+can be found http://www.samba.org/samba/security/
+
+######################################################################
+Changes
+#######
+
+Changes since 3.0.25c
+---------------------
+
+o Gerald (Jerry) Carter <jerry at samba.org>
+ * Fix CVE-2007-4138 in the "winbind nss info = {sfu | rfc2307}"
+ plugin (idmap_ad.c)
+
+
+Release notes for older releases follow:
+
+ --------------------------------------------------
===============================
Release Notes for Samba 3.0.25c
Aug 20, 2007
@@ -3,8 +34,4 @@
===============================
-This is the latest production release of the Samba 3.0.25 code
-base and is the version that servers should be run for for all
-current bug fixes.
-
Major bug fixes included in Samba 3.0.25c are:
@@ -132,10 +159,6 @@
* Ensure proper exit when nmbd is unable to reopen the wins.tdb.
* Fix error path memleaks in the messaging subsystem.
-
-
-Release notes for older releases follow:
-
--------------------------------------------------
===============================
Release Notes for Samba 3.0.25b
Modified: branches/SAMBA_3_0_RELEASE/source/VERSION
===================================================================
--- branches/SAMBA_3_0_RELEASE/source/VERSION 2007-09-11 10:29:19 UTC (rev 25075)
+++ branches/SAMBA_3_0_RELEASE/source/VERSION 2007-09-11 14:28:37 UTC (rev 25076)
@@ -25,7 +25,7 @@
########################################################
SAMBA_VERSION_MAJOR=3
SAMBA_VERSION_MINOR=0
-SAMBA_VERSION_RELEASE=25
+SAMBA_VERSION_RELEASE=26
########################################################
# Bug fix releases use a letter for the patch revision #
@@ -36,7 +36,7 @@
# e.g. SAMBA_VERSION_REVISION=a #
# -> "2.2.8a" #
########################################################
-SAMBA_VERSION_REVISION=c
+SAMBA_VERSION_REVISION=
########################################################
# For 'pre' releases the version will be #
Modified: branches/SAMBA_3_0_RELEASE/source/nsswitch/idmap_ad.c
===================================================================
--- branches/SAMBA_3_0_RELEASE/source/nsswitch/idmap_ad.c 2007-09-11 10:29:19 UTC (rev 25075)
+++ branches/SAMBA_3_0_RELEASE/source/nsswitch/idmap_ad.c 2007-09-11 14:28:37 UTC (rev 25076)
@@ -753,7 +753,7 @@
if ( gid ) {
if ( !ads_pull_uint32(ads, msg, ad_schema->posix_gidnumber_attr, gid ) )
- *gid = 0;
+ *gid = (uint32)-1;
}
return NT_STATUS_OK;
More information about the samba-cvs
mailing list