diff mbox series

[1/1] package/samba4: security bump version to 4.11.5

Message ID 20200122185659.336443-1-bernd.kuhls@t-online.de
State Accepted
Headers show
Series [1/1] package/samba4: security bump version to 4.11.5 | expand

Commit Message

Bernd Kuhls Jan. 22, 2020, 6:56 p.m. UTC 
Release notes: https://www.samba.org/samba/history/samba-4.11.5.html

This is a security release in order to address the following defects:

CVE-2019-14902: Replication of ACLs set to inherit down a subtree on AD
                Directory not automatic.
CVE-2019-14907: Crash after failed character conversion at log level 3
                or above.
CVE-2019-19344: Use after free during DNS zone scavenging in Samba AD
                DC.

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
---
 package/samba4/samba4.hash | 4 ++--
 package/samba4/samba4.mk   | 2 +-
 2 files changed, 3 insertions(+), 3 deletions(-)

Comments

Peter Korsgaard Jan. 22, 2020, 7:51 p.m. UTC | #1 
>>>>> "Bernd" == Bernd Kuhls <bernd.kuhls@t-online.de> writes:

 > Release notes: https://www.samba.org/samba/history/samba-4.11.5.html
 > This is a security release in order to address the following defects:

 > CVE-2019-14902: Replication of ACLs set to inherit down a subtree on AD
 >                 Directory not automatic.
 > CVE-2019-14907: Crash after failed character conversion at log level 3
 >                 or above.
 > CVE-2019-19344: Use after free during DNS zone scavenging in Samba AD
 >                 DC.

 > Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>

Committed, thanks.
Peter Korsgaard March 7, 2020, 7:34 a.m. UTC | #2 
>>>>> "Bernd" == Bernd Kuhls <bernd.kuhls@t-online.de> writes:

 > Release notes: https://www.samba.org/samba/history/samba-4.11.5.html
 > This is a security release in order to address the following defects:

 > CVE-2019-14902: Replication of ACLs set to inherit down a subtree on AD
 >                 Directory not automatic.
 > CVE-2019-14907: Crash after failed character conversion at log level 3
 >                 or above.
 > CVE-2019-19344: Use after free during DNS zone scavenging in Samba AD
 >                 DC.

 > Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>

I have instead bumped 2019.02.x to 4.9.18 and 2019.11.x to 4.10.13.
diff mbox series

Patch

diff --git a/package/samba4/samba4.hash b/package/samba4/samba4.hash
index e8bd026a9e..47e251b38c 100644
--- a/package/samba4/samba4.hash
+++ b/package/samba4/samba4.hash
@@ -1,4 +1,4 @@ 
 # Locally calculated after checking pgp signature
-# https://download.samba.org/pub/samba/stable/samba-4.11.4.tar.asc
-sha256 b95471ba450757109dce65acfe75dafc719c5cc5d464fc65ee442433a461db24  samba-4.11.4.tar.gz
+# https://download.samba.org/pub/samba/stable/samba-4.11.5.tar.asc
+sha256 f3e299ff62e424c0c259a2e60ca30979c8a65244d7ef6b54667902dac639d93f  samba-4.11.5.tar.gz
 sha256 8ceb4b9ee5adedde47b31e975c1d90c73ad27b6b165a1dcd80c7c545eb65b903  COPYING
diff --git a/package/samba4/samba4.mk b/package/samba4/samba4.mk
index 965d593bd1..d66fd5794d 100644
--- a/package/samba4/samba4.mk
+++ b/package/samba4/samba4.mk
@@ -4,7 +4,7 @@ 
 #
 ################################################################################
 
-SAMBA4_VERSION = 4.11.4
+SAMBA4_VERSION = 4.11.5
 SAMBA4_SITE = https://download.samba.org/pub/samba/stable
 SAMBA4_SOURCE = samba-$(SAMBA4_VERSION).tar.gz
 SAMBA4_INSTALL_STAGING = YES