[SCM] Samba Shared Repository - annotated tag samba-4.12.7 created

Karolin Seeger kseeger at samba.org
Fri Sep 18 11:47:25 UTC 2020 

The annotated tag, samba-4.12.7 has been created
        at  d5ff722160b190dcbb392be921ca41f686e5c850 (tag)
   tagging  356c036ef15b9790570e151cd1180910b4d35c18 (commit)
  replaces  samba-4.12.6
 tagged by  Karolin Seeger
        on  Fri Sep 18 13:30:57 2020 +0200

- Log -----------------------------------------------------------------
samba: tag release samba-4.12.7
-----BEGIN PGP SIGNATURE-----

iF0EABECAB0WIQRS+8C4bZVLCEMyTNxvM5FbZWi36gUCX2SacQAKCRBvM5FbZWi3
6i/YAJ9RA1I/BXe8LCVh+/RueMuNyGFkrACdEGWlj1IW4ZEOqDJhxSeMyRPmBYo=
=/BmY
-----END PGP SIGNATURE-----

Gary Lockyer (2):
      CVE-2020-1472(ZeroLogon): s4 torture rpc: Test empty machine acct pwd
      CVE-2020-1472(ZeroLogon): s4 torture rpc: repeated bytes in client challenge

Günther Deschner (3):
      CVE-2020-1472(ZeroLogon): s3:rpc_server/netlogon: refactor dcesrv_netr_creds_server_step_check()
      CVE-2020-1472(ZeroLogon): s3:rpc_server/netlogon: support "server require schannel:WORKSTATION$ = no"
      CVE-2020-1472(ZeroLogon): s3:rpc_server/netlogon: log warnings about unsecure configurations

Jeremy Allison (2):
      CVE-2020-1472(ZeroLogon): s3:rpc_server/netlogon: Fix mem leak onto p->mem_ctx in error path of _netr_ServerPasswordSet2().
      CVE-2020-1472(ZeroLogon): s3:rpc_server/netlogon: protect netr_ServerPasswordSet2 against unencrypted passwords

Karolin Seeger (3):
      VERSION: Bump version up to 4.12.7...
      WHATSNEW: Add release notes for Samba 4.12.7.
      VERSION: Disable GIT_SNAPSHOT for 4.12.7 release.

Stefan Metzmacher (12):
      CVE-2020-1472(ZeroLogon): libcli/auth: add netlogon_creds_random_challenge()
      CVE-2020-1472(ZeroLogon): s4:torture/rpc: make use of netlogon_creds_random_challenge()
      CVE-2020-1472(ZeroLogon): libcli/auth: make use of netlogon_creds_random_challenge() in netlogon_creds_cli.c
      CVE-2020-1472(ZeroLogon): s3:rpc_server:netlogon: make use of netlogon_creds_random_challenge()
      CVE-2020-1472(ZeroLogon): s4:rpc_server:netlogon: make use of netlogon_creds_random_challenge()
      CVE-2020-1472(ZeroLogon): libcli/auth: add netlogon_creds_is_random_challenge() to avoid weak values
      CVE-2020-1472(ZeroLogon): libcli/auth: reject weak client challenges in netlogon_creds_server_init()
      CVE-2020-1472(ZeroLogon): s4:rpc_server/netlogon: protect netr_ServerPasswordSet2 against unencrypted passwords
      CVE-2020-1472(ZeroLogon): s4:rpc_server/netlogon: refactor dcesrv_netr_creds_server_step_check()
      CVE-2020-1472(ZeroLogon): s4:rpc_server/netlogon: support "server require schannel:WORKSTATION$ = no"
      CVE-2020-1472(ZeroLogon): s4:rpc_server/netlogon: log warnings about unsecure configurations
      CVE-2020-1472(ZeroLogon): docs-xml: document 'server require schannel:COMPUTERACCOUNT'

-----------------------------------------------------------------------


-- 
Samba Shared Repository

More information about the samba-cvs mailing list