[SCM] Samba Shared Repository - branch v3-0-stable updated -
release-3-0-35
Karolin Seeger
kseeger at samba.org
Tue Jun 23 13:22:10 GMT 2009
The branch, v3-0-stable has been updated
via 857b6fb063b9968134cc664430ff5d33a992da4a (commit)
via 21d184a8b1b335ff9e8e0515fd70f4a16c00be5a (commit)
via 689b313404971bb884566710b1468b9bd4091caa (commit)
from 9398128966537cc1977ea59ef54fbfd66bf8d0e5 (commit)
http://gitweb.samba.org/?p=samba.git;a=shortlog;h=v3-0-stable
- Log -----------------------------------------------------------------
commit 857b6fb063b9968134cc664430ff5d33a992da4a
Author: Karolin Seeger <kseeger at samba.org>
Date: Mon Jun 22 22:35:07 2009 +0200
VERSION: Raise version number to 3.0.35.
Karolin
commit 21d184a8b1b335ff9e8e0515fd70f4a16c00be5a
Author: Karolin Seeger <kseeger at samba.org>
Date: Mon Jun 22 22:34:42 2009 +0200
WHATSNEW: Update changes since 3.0.34.
Karolin
commit 689b313404971bb884566710b1468b9bd4091caa
Author: Jeremy Allison <jra at samba.org>
Date: Mon Jun 22 22:29:49 2009 +0200
Fix bug #6488.
-----------------------------------------------------------------------
Summary of changes:
WHATSNEW.txt | 53 ++++++++++++++++++++++++++++++++++++++++++++-
source/VERSION | 2 +-
source/smbd/posix_acls.c | 2 +
3 files changed, 54 insertions(+), 3 deletions(-)
Changeset truncated at 500 lines:
diff --git a/WHATSNEW.txt b/WHATSNEW.txt
index fa0ae84..01905e2 100644
--- a/WHATSNEW.txt
+++ b/WHATSNEW.txt
@@ -1,4 +1,53 @@
==============================
+ Release Notes for Samba 3.0.35
+ June, 23 2009
+ ==============================
+
+
+This is a security release in order to address CVE-2009-1888.
+
+ o CVE-2009-1888:
+ In Samba 3.0.31 to 3.3.5 (inclusive), an uninitialized read of a
+ data value can potentially affect access control when "dos filemode"
+ is set to "yes".
+
+
+######################################################################
+Changes
+#######
+
+Changes since 3.0.34
+--------------------
+
+
+o Jeremy Allison <jra at samba.org>
+ * Fix for CVE-2009-1888.
+
+
+######################################################################
+Reporting bugs & Development Discussion
+#######################################
+
+Please discuss this release on the samba-technical mailing list or by
+joining the #samba-technical IRC channel on irc.freenode.net.
+
+If you do report problems then please try to send high quality
+feedback. If you don't provide vital information to help us track down
+the problem then you will probably be ignored. All bug reports should
+be filed under the Samba 3.0 product in the project's Bugzilla
+database (https://bugzilla.samba.org/).
+
+
+======================================================================
+== Our Code, Our Bugs, Our Responsibility.
+== The Samba Team
+======================================================================
+
+
+Release notes for older releases follow:
+-------------------------------------------------
+
+ ==============================
Release Notes for Samba 3.0.34
January, 20 2009
==============================
@@ -177,8 +226,8 @@ database (https://bugzilla.samba.org/).
======================================================================
-Release notes for older releases follow:
- --------------------------------------------------
+
+
==============================
Release Notes for Samba 3.0.33
November, 27 2008
diff --git a/source/VERSION b/source/VERSION
index 419c703..4351b58 100644
--- a/source/VERSION
+++ b/source/VERSION
@@ -25,7 +25,7 @@
########################################################
SAMBA_VERSION_MAJOR=3
SAMBA_VERSION_MINOR=0
-SAMBA_VERSION_RELEASE=34
+SAMBA_VERSION_RELEASE=35
########################################################
# Bug fix releases use a letter for the patch revision #
diff --git a/source/smbd/posix_acls.c b/source/smbd/posix_acls.c
index 33cba6a..4886467 100644
--- a/source/smbd/posix_acls.c
+++ b/source/smbd/posix_acls.c
@@ -2296,6 +2296,8 @@ static BOOL acl_group_override(connection_struct *conn, gid_t prim_gid, const ch
{
SMB_STRUCT_STAT sbuf;
+ ZERO_STRUCT(sbuf);
+
if ((errno != EPERM) && (errno != EACCES)) {
return False;
}
--
Samba Shared Repository
More information about the samba-cvs
mailing list