[SCM] Samba Shared Repository - branch v3-2-test updated - release-3-2-0pre2-3238-g4d63395

Karolin Seeger kseeger at samba.org
Tue Dec 9 10:48:55 GMT 2008 

The branch, v3-2-test has been updated
       via  4d63395f9bdff4f4c1f1874e8148dce966dc4d3c (commit)
      from  00af69227dbdd6dfd3776b5cb52f479c9c85b697 (commit)

http://gitweb.samba.org/?p=samba.git;a=shortlog;h=v3-2-test


- Log -----------------------------------------------------------------
commit 4d63395f9bdff4f4c1f1874e8148dce966dc4d3c
Author: Karolin Seeger <kseeger at samba.org>
Date:   Tue Nov 18 16:17:17 2008 +0100

    WHATSNEW: Update WHATSNEW for 3.2.5.
    
    Karolin

-----------------------------------------------------------------------

Summary of changes:
 WHATSNEW.txt |   96 ++++++----------------------------------------------------
 1 files changed, 10 insertions(+), 86 deletions(-)


Changeset truncated at 500 lines:

diff --git a/WHATSNEW.txt b/WHATSNEW.txt
index a9c4b6f..0028a05 100644
--- a/WHATSNEW.txt
+++ b/WHATSNEW.txt
@@ -1,18 +1,19 @@
                    ==============================
                    Release Notes for Samba 3.2.5
-
+			 November, 27 2008
                    ==============================
 
 
-This is a bug fix release of the Samba 3.2 series.
-
-Major enhancements included in Samba 3.2.5 are:
+This is a security release in order to address CVE-2008-4314 ("Potential leak of
+arbitrary memory contents").
 
-  o Fix Winbind crash bugs.
-  o Fix moving of readonly files.
-  o Fix access to cups-printers with cups 1.3.4.
-  o Add new SMB traffic analyzer VFS module.
+   o CVE-2008-4314
+     Samba 3.0.29 to 3.2.4 can potentially leak
+     arbitrary memory contents to malicious
+     clients.
 
+The original security announcement for this and past advisories can
+be found http://www.samba.org/samba/security/
 
 ######################################################################
 Changes
@@ -22,85 +23,8 @@ Changes since 3.2.4
 -------------------
 
 
-o   Jeremy Allison <jra at samba.org>
-    * BUG 5080: Fix access to cups-printers with cups 1.3.4.
-    * BUG 5737: Fix Winbind crash in an unusual failure mode.
-    * BUG 5783: Fix FindFirst where search pattern equals the mangled filename.
-    * BUG 5790: Fix returning of STATUS_OBJECT_NAME_NOT_FOUND on set file
-      disposition.
-    * BUG 5797: Fix moving of readonly files.
-    * BUG 5814: Fix Winbind crash bug while doing "rescan_trusted_domain".
-    * BUG 5818: Sort ACEs in smbcacl output properly and honor inheritance.
-    * BUG 5826: Fix truncated filenames when accessing old servers.
-    * Fix rename_open_files.
-    * Restructure VFS SMB traffic analyzer VFS module.
-    * Correctly fix smbclient to terminate on eof from server.
-    * Unify access checks for lsa server functions.
-    * Remove the requirement for ldap call made as root.
-    * Cope with MAXIMUM_ALLOWED_ACCESS requests when opening handles.
-    * Fix net rpc vampire, based on an *amazing* piece of debugging work by
-      "Cooper S. Blake" <the_analogkid at yahoo.com>.
-
-
-o   Gerald (Jerry) Carter <jerry at samba.org>
-    * Use the same prerequisite for DDNS update as Windows XP.
-    * Make "lwinet ads dns register" honor the "interfaces" parameter.
-
-
-o   Guenther Deschner <gd at samba.org>
-    * Fix duplicate installation of cifs.upcall.
-    * Fix _srvsvc_NetShareAdd segfault.
-    * Ensure consistency when reporting password complexity.
-    * Fix _lsa_GetUserName.
-    * Fix access check in _samr_QuerySecurity().
-    * _samr_DeleteUser needs to wipe out the user_handle on success.
-    * NetGroupEnum_r needs to handle servers with no groups.
-
-
-o   Holger Hetterich <hhetter at novell.com>
-    * Add new VFS module to analyze SMB traffic
-
-
-o   Jeff Layton <jlayton at redhat.com>
-    * Have uppercase_string return success on NULL pointer in mount.cifs.
-    * Make mount.cifs return codes match the return codes for /bin/mount.
-
-
 o   Volker Lendecke <vl at samba.org>
-    * BUG 5691: Fig smbd panic on Solaris.
-    * BUG 5778: Check if strlcpy and strlcat are already defined.
-    * BUG 5840: Fix segfault in "rpcclient lsaaddacctrights".
-    * Fix a potential NULL deref in found by the IBM Checker.
-    * Fix an uninitialized variable found by the IBM Checker.
-    * Fix an unlikely memleak found by the IBM Checker.
-    * Fix some missing error handlings.
-    * Add workaround for domain joins using a netbios name which is different
-      from the hostname.
-
-
-o   Derrell Lipman <derrell.lipman at unwireduniverse.com>
-    * BUG 5805: Don't close stdout when calling setup_logging multiple times.
-
-
-o   Jim McDonough <jmcd at samba.org>
-    * Fix the new vfs_smb_traffic_analyzer build for static links.
-
-
-o   Tim Prouty <tim.prouty at isilon.com>
-    * Fix several build warnings.
-
-
-o   Andreas Schneider <mail at cynapses.org>
-    * Delete the krb5 ccname variable from the PAM environment if set.
-
-
-o   Andrew Tridgell <tridge at samba.org>
-    * Fix segfault on startup with trusted domains.
-    * Re-add "winbind:ignore domains" parameter.
-
-
-o   Jelmer Vernooij <jelmer at samba.org>
-    * Avoid freeing fsp twice when opening new_file fails (Debian #431696).
+    * Fix for CVE-2008-4314.
 
 
 ######################################################################


-- 
Samba Shared Repository

More information about the samba-cvs mailing list