[SCM] Samba Shared Repository - branch v3-2-test updated -
release-3-2-0pre2-3238-g4d63395
Karolin Seeger
kseeger at samba.org
Tue Dec 9 10:48:55 GMT 2008
The branch, v3-2-test has been updated
via 4d63395f9bdff4f4c1f1874e8148dce966dc4d3c (commit)
from 00af69227dbdd6dfd3776b5cb52f479c9c85b697 (commit)
http://gitweb.samba.org/?p=samba.git;a=shortlog;h=v3-2-test
- Log -----------------------------------------------------------------
commit 4d63395f9bdff4f4c1f1874e8148dce966dc4d3c
Author: Karolin Seeger <kseeger at samba.org>
Date: Tue Nov 18 16:17:17 2008 +0100
WHATSNEW: Update WHATSNEW for 3.2.5.
Karolin
-----------------------------------------------------------------------
Summary of changes:
WHATSNEW.txt | 96 ++++++----------------------------------------------------
1 files changed, 10 insertions(+), 86 deletions(-)
Changeset truncated at 500 lines:
diff --git a/WHATSNEW.txt b/WHATSNEW.txt
index a9c4b6f..0028a05 100644
--- a/WHATSNEW.txt
+++ b/WHATSNEW.txt
@@ -1,18 +1,19 @@
==============================
Release Notes for Samba 3.2.5
-
+ November, 27 2008
==============================
-This is a bug fix release of the Samba 3.2 series.
-
-Major enhancements included in Samba 3.2.5 are:
+This is a security release in order to address CVE-2008-4314 ("Potential leak of
+arbitrary memory contents").
- o Fix Winbind crash bugs.
- o Fix moving of readonly files.
- o Fix access to cups-printers with cups 1.3.4.
- o Add new SMB traffic analyzer VFS module.
+ o CVE-2008-4314
+ Samba 3.0.29 to 3.2.4 can potentially leak
+ arbitrary memory contents to malicious
+ clients.
+The original security announcement for this and past advisories can
+be found http://www.samba.org/samba/security/
######################################################################
Changes
@@ -22,85 +23,8 @@ Changes since 3.2.4
-------------------
-o Jeremy Allison <jra at samba.org>
- * BUG 5080: Fix access to cups-printers with cups 1.3.4.
- * BUG 5737: Fix Winbind crash in an unusual failure mode.
- * BUG 5783: Fix FindFirst where search pattern equals the mangled filename.
- * BUG 5790: Fix returning of STATUS_OBJECT_NAME_NOT_FOUND on set file
- disposition.
- * BUG 5797: Fix moving of readonly files.
- * BUG 5814: Fix Winbind crash bug while doing "rescan_trusted_domain".
- * BUG 5818: Sort ACEs in smbcacl output properly and honor inheritance.
- * BUG 5826: Fix truncated filenames when accessing old servers.
- * Fix rename_open_files.
- * Restructure VFS SMB traffic analyzer VFS module.
- * Correctly fix smbclient to terminate on eof from server.
- * Unify access checks for lsa server functions.
- * Remove the requirement for ldap call made as root.
- * Cope with MAXIMUM_ALLOWED_ACCESS requests when opening handles.
- * Fix net rpc vampire, based on an *amazing* piece of debugging work by
- "Cooper S. Blake" <the_analogkid at yahoo.com>.
-
-
-o Gerald (Jerry) Carter <jerry at samba.org>
- * Use the same prerequisite for DDNS update as Windows XP.
- * Make "lwinet ads dns register" honor the "interfaces" parameter.
-
-
-o Guenther Deschner <gd at samba.org>
- * Fix duplicate installation of cifs.upcall.
- * Fix _srvsvc_NetShareAdd segfault.
- * Ensure consistency when reporting password complexity.
- * Fix _lsa_GetUserName.
- * Fix access check in _samr_QuerySecurity().
- * _samr_DeleteUser needs to wipe out the user_handle on success.
- * NetGroupEnum_r needs to handle servers with no groups.
-
-
-o Holger Hetterich <hhetter at novell.com>
- * Add new VFS module to analyze SMB traffic
-
-
-o Jeff Layton <jlayton at redhat.com>
- * Have uppercase_string return success on NULL pointer in mount.cifs.
- * Make mount.cifs return codes match the return codes for /bin/mount.
-
-
o Volker Lendecke <vl at samba.org>
- * BUG 5691: Fig smbd panic on Solaris.
- * BUG 5778: Check if strlcpy and strlcat are already defined.
- * BUG 5840: Fix segfault in "rpcclient lsaaddacctrights".
- * Fix a potential NULL deref in found by the IBM Checker.
- * Fix an uninitialized variable found by the IBM Checker.
- * Fix an unlikely memleak found by the IBM Checker.
- * Fix some missing error handlings.
- * Add workaround for domain joins using a netbios name which is different
- from the hostname.
-
-
-o Derrell Lipman <derrell.lipman at unwireduniverse.com>
- * BUG 5805: Don't close stdout when calling setup_logging multiple times.
-
-
-o Jim McDonough <jmcd at samba.org>
- * Fix the new vfs_smb_traffic_analyzer build for static links.
-
-
-o Tim Prouty <tim.prouty at isilon.com>
- * Fix several build warnings.
-
-
-o Andreas Schneider <mail at cynapses.org>
- * Delete the krb5 ccname variable from the PAM environment if set.
-
-
-o Andrew Tridgell <tridge at samba.org>
- * Fix segfault on startup with trusted domains.
- * Re-add "winbind:ignore domains" parameter.
-
-
-o Jelmer Vernooij <jelmer at samba.org>
- * Avoid freeing fsp twice when opening new_file fails (Debian #431696).
+ * Fix for CVE-2008-4314.
######################################################################
--
Samba Shared Repository
More information about the samba-cvs
mailing list