[Announce] Samba 4.5.3, 4.4.8 and 4.3.13 Security Releases Available for Download
abartlet at samba.org
Mon Dec 19 18:35:31 UTC 2016
On Mon, 2016-12-19 at 18:20 +0400, Evgeny Sinelnikov wrote:
> we got a build problem for 4.3.13 and 4.4.8:
> ../auth/kerberos/kerberos_pac.c: In function 'check_pac_checksum':
> ../auth/kerberos/kerberos_pac.c:46:7: error:
> 'CKSUMTYPE_HMAC_SHA1_96_AES_256' undeclared (first use in this
> ../auth/kerberos/kerberos_pac.c:46:7: note: each undeclared
> is reported only once for each function it appears in
> ../auth/kerberos/kerberos_pac.c:52:7: error:
> 'CKSUMTYPE_HMAC_SHA1_96_AES_128' undeclared (first use in this
> due patch bb64c550 not applied.
This is as noted below:
> > Please note that the patch for CVE-2016-2126 breaks the build with
> > Kerberos in Samba 4.4.8 and 4.4.13. Samba 4.5.3 is not affected.
> > A patch for this issue is available for Samba 4.4 and 4.3 here:
> > https://bugzilla.samba.org/show_bug.cgi?id=12471
We became aware of this during the release process, but we could not
re-spin the tarballs at that point, it was already too late.
Andrew Bartlett http://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
Samba Developer, Catalyst IT http://catalyst.net.nz/services/samba
More information about the samba-technical