[Samba] libldb for security patch 4.12 backport?

Andrew Bartlett abartlet at samba.org
Thu Jul 28 18:23:39 UTC 2022


On Thu, 2022-07-28 at 16:37 +0000, Sri Nagasubramanian via samba wrote:
> Hello,
> I'm trying to build the 4.12 version of the new security patches that
> were kindly provided (for CVE-2022-2031<
> https://www.samba.org/samba/security/CVE-2022-2031.html>;, CVE-2022-
> 32742<https://www.samba.org/samba/security/CVE-2022-32742.html>;,
> CVE-2022-32744<
> https://www.samba.org/samba/security/CVE-2022-32744.html>;, CVE-2022-
> 32745<https://www.samba.org/samba/security/CVE-2022-32745.html> and
> CVE-2022-32746<
> https://www.samba.org/samba/security/CVE-2022-32746.html>;), but am
> not able to use my usual build procedure because the patches require
> libldb 2.1.6 and I haven't been able to locate the source code for
> that.  I do see a reference that Andrew Bartlett made against one of
> the related Bugzilla cases (15096) that says that the 4.12-related
> ldb release is unofficial and not been released upstream - which
> would explain why I can't find it in my usual places.  Am I
> misunderstanding how to proceed with the 4.12 patches (or perhaps I'm
> out of luck for now)?
> Thanks,Sri

Thanks, I should have clarified on the bug, as we had a similar
question from the client we prepared those for:
The Samba 4.12 patches are on top of this tag:
https://gitlab.com/catalyst-samba/samba/-/tags/catalyst-4.12-backports-2022-02
You can download that tarball or extract the patches from git.
Andrew Bartlett

-- 
Andrew Bartlett (he/him)       https://samba.org/~abartlet/Samba Team Member (since 2001) https://samba.orgSamba Team Lead, Catalyst IT   https://catalyst.net.nz/services/samba
Samba Development and Support, Catalyst IT - Expert Open SourceSolutions


More information about the samba mailing list