[SCM] Samba Shared Repository - annotated tag samba-4.5.16 created

Karolin Seeger kseeger at samba.org
Tue Mar 13 09:15:09 UTC 2018

The annotated tag, samba-4.5.16 has been created
        at  79ef81f0710b31dcc8050a2d5c8a0789cfe57bf9 (tag)
   tagging  4b43ad87039c0e94522b2baa7381255e28935f4e (commit)
  replaces  samba-4.5.15
 tagged by  Karolin Seeger
        on  Mon Mar 12 13:11:56 2018 +0100

- Log -----------------------------------------------------------------
samba: tag release samba-4.5.16


Jeremy Allison (1):
      CVE-2018-1050: s3: RPC: spoolss server. Protect against null pointer derefs.

Karolin Seeger (4):
      VERSION: Bump version up to 4.5.16.
      VERSION: Re-enable GIT_SNAPSHOT.
      WHATSNEW: Add release notes for Samba 4.6.16.
      VERSION: Disable GIT_SNAPSHOT for the 4.6.16 release.

Ralph Boehme (13):
      CVE-2018-1057: s4:dsdb/tests: add a test for password change with empty delete
      CVE-2018-1057: s4:dsdb/password_hash: add a helper variable for LDB_FLAG_MOD_TYPE
      CVE-2018-1057: s4:dsdb/password_hash: add a helper variable for passwordAttr->num_values
      CVE-2018-1057: s4:dsdb/acl: only call dsdb_acl_debug() if we checked the acl in acl_check_password_rights()
      CVE-2018-1057: s4:dsdb/acl: remove unused else branches in acl_check_password_rights()
      CVE-2018-1057: s4:dsdb/acl: check for internal controls before other checks
      CVE-2018-1057: s4:dsdb/acl: add check for DSDB_CONTROL_PASSWORD_HASH_VALUES_OID control
      CVE-2018-1057: s4:dsdb/acl: add a NULL check for talloc_new() in acl_check_password_rights()
      CVE-2018-1057: s4/dsdb: correctly detect password resets
      CVE-2018-1057: s4:dsdb/acl: run password checking only once
      CVE-2018-1057: s4:dsdb/samdb: define DSDB_CONTROL_PASSWORD_ACL_VALIDATION_OID control
      CVE-2018-1057: s4:dsdb/acl: changing dBCSPwd is only allowed with a control


Samba Shared Repository

More information about the samba-cvs mailing list