[Pkg-samba-maint] r2146 - in trunk/samba/debian: . patches

vorlon at alioth.debian.org vorlon at alioth.debian.org
Wed Aug 27 07:42:12 UTC 2008 

tags 496073 pending
thanks

Author: vorlon
Date: 2008-08-27 07:42:11 +0000 (Wed, 27 Aug 2008)
New Revision: 2146

Added:
   trunk/samba/debian/patches/CVE-2008-3789-ldb-permissions.patch
Modified:
   trunk/samba/debian/changelog
   trunk/samba/debian/patches/series
Log:
New patch debian/patches/CVE-2008-3789-ldb-permissions.patch, fixing the
default permissions on ldb databases.  Addresses CVE-2008-3789,
closes: #496073.

Modified: trunk/samba/debian/changelog
===================================================================
--- trunk/samba/debian/changelog	2008-08-27 07:21:00 UTC (rev 2145)
+++ trunk/samba/debian/changelog	2008-08-27 07:42:11 UTC (rev 2146)
@@ -11,6 +11,11 @@
   [ Noèl Köthe ]
   * fixing lintian warning "build-depends-on-1-revision"
 
+  [ Steve Langasek ]
+  * New patch debian/patches/CVE-2008-3789-ldb-permissions.patch, fixing the
+    default permissions on ldb databases.  Addresses CVE-2008-3789,
+    closes: #496073.
+
  -- Noèl Köthe <noel at debian.org>  Sat, 16 Aug 2008 17:29:09 +0200
 
 samba (2:3.2.1-1) unstable; urgency=low

Added: trunk/samba/debian/patches/CVE-2008-3789-ldb-permissions.patch
===================================================================
--- trunk/samba/debian/patches/CVE-2008-3789-ldb-permissions.patch	                        (rev 0)
+++ trunk/samba/debian/patches/CVE-2008-3789-ldb-permissions.patch	2008-08-27 07:42:11 UTC (rev 2146)
@@ -0,0 +1,29 @@
+From 2b72b0fe8d17b8ea29f966196862a9b895a55f62 Mon Sep 17 00:00:00 2001
+From: Karolin Seeger <kseeger at samba.org>
+Date: Mon, 25 Aug 2008 09:37:26 +0200
+Subject: [PATCH] ldb: Fix permissions of group_mapping.ldb.
+
+This one fixes bug #5715.
+Thanks to Steve Langasek for reporting!
+
+Karolin
+---
+ source/lib/ldb/common/ldb.c |    2 +-
+ 1 files changed, 1 insertions(+), 1 deletions(-)
+
+diff --git a/source/lib/ldb/common/ldb.c b/source/lib/ldb/common/ldb.c
+index e469c49..743711b 100644
+--- a/source/lib/ldb/common/ldb.c
++++ b/source/lib/ldb/common/ldb.c
+@@ -51,7 +51,7 @@ struct ldb_context *ldb_init(void *mem_ctx)
+ 	}
+ 
+ 	ldb_set_utf8_default(ldb);
+-	ldb_set_create_perms(ldb, 0666);
++	ldb_set_create_perms(ldb, 0600);
+ 
+ 	return ldb;
+ }
+-- 
+1.5.4.4
+

Modified: trunk/samba/debian/patches/series
===================================================================
--- trunk/samba/debian/patches/series	2008-08-27 07:21:00 UTC (rev 2145)
+++ trunk/samba/debian/patches/series	2008-08-27 07:42:11 UTC (rev 2146)
@@ -18,3 +18,4 @@
 smbtar-bashism.patch
 no-unnecessary-cups.patch
 shrink-dead-code.patch
+CVE-2008-3789-ldb-permissions.patch

More information about the Pkg-samba-maint mailing list