[SCM] Samba Shared Repository - annotated tag samba-4.6.14 created

Karolin Seeger kseeger at samba.org
Tue Mar 13 09:14:59 UTC 2018 

The annotated tag, samba-4.6.14 has been created
        at  e8cd7090b007b420cb0bbdb02272835ecf4b6261 (tag)
   tagging  d64e68abdb0c468467b6ea480dd2ede8c0315374 (commit)
  replaces  samba-4.6.13
 tagged by  Karolin Seeger
        on  Mon Mar 12 10:14:07 2018 +0100

- Log -----------------------------------------------------------------
samba: tag release samba-4.6.14
-----BEGIN PGP SIGNATURE-----

iEYEABECAAYFAlqmRN8ACgkQbzORW2Vot+p/DQCfdzDJfPsIrg8a1cmgTOw6m4/S
ji4An3CjZ0C99e0MXjMFbNFqx1eGm5Hb
=92v9
-----END PGP SIGNATURE-----

Jeremy Allison (1):
      CVE-2018-1050: s3: RPC: spoolss server. Protect against null pointer derefs.

Karolin Seeger (3):
      VERSION: Bump version up to 4.6.14...
      WHATSNEW: Add release notes for Samba 4.6.14.
      VERSION: Disable GIT_SNAPSHOT for the 4.6.14 release.

Ralph Boehme (13):
      CVE-2018-1057: s4:dsdb/tests: add a test for password change with empty delete
      CVE-2018-1057: s4:dsdb/password_hash: add a helper variable for LDB_FLAG_MOD_TYPE
      CVE-2018-1057: s4:dsdb/password_hash: add a helper variable for passwordAttr->num_values
      CVE-2018-1057: s4:dsdb/acl: only call dsdb_acl_debug() if we checked the acl in acl_check_password_rights()
      CVE-2018-1057: s4:dsdb/acl: remove unused else branches in acl_check_password_rights()
      CVE-2018-1057: s4:dsdb/acl: check for internal controls before other checks
      CVE-2018-1057: s4:dsdb/acl: add check for DSDB_CONTROL_PASSWORD_HASH_VALUES_OID control
      CVE-2018-1057: s4:dsdb/acl: add a NULL check for talloc_new() in acl_check_password_rights()
      CVE-2018-1057: s4/dsdb: correctly detect password resets
      CVE-2018-1057: s4:dsdb/acl: run password checking only once
      CVE-2018-1057: s4:dsdb/samdb: define DSDB_CONTROL_PASSWORD_ACL_VALIDATION_OID control
      CVE-2018-1057: s4:dsdb: use DSDB_CONTROL_PASSWORD_ACL_VALIDATION_OID
      CVE-2018-1057: s4:dsdb/acl: changing dBCSPwd is only allowed with a control

-----------------------------------------------------------------------


-- 
Samba Shared Repository

More information about the samba-cvs mailing list