[Pkg-samba-maint] r2153 - in trunk/samba/debian: . patches
vorlon at alioth.debian.org
vorlon at alioth.debian.org
Wed Aug 27 18:20:11 UTC 2008
tags 496073 pending
thanks
Author: vorlon
Date: 2008-08-27 18:20:11 +0000 (Wed, 27 Aug 2008)
New Revision: 2153
Removed:
trunk/samba/debian/patches/CVE-2008-3789-ldb-permissions.patch
Modified:
trunk/samba/debian/changelog
trunk/samba/debian/patches/series
trunk/samba/debian/samba.postinst
Log:
use the upstream fix for CVE-2008-3789, since 3.2.3 is a targeted security fix
Modified: trunk/samba/debian/changelog
===================================================================
--- trunk/samba/debian/changelog 2008-08-27 18:15:01 UTC (rev 2152)
+++ trunk/samba/debian/changelog 2008-08-27 18:20:11 UTC (rev 2153)
@@ -1,9 +1,11 @@
-samba (2:3.2.2-1) unstable; urgency=high
+samba (2:3.2.3-1) unstable; urgency=high
* High-urgency upload for security fix
* New upstream release
- Fix "/usr/lib/cups/backend/smb does not try port 139 anymore by default"
Closes: #491881
+ - Fix the default permissions on ldb databases. Addresses
+ CVE-2008-3789; closes: #496073.
- debian/rules, debian/smbfs.files: build with cifs.upcall,
newly introduced to replace cifs.spnego
- debian/rules: no more need to rename libsmbclient.so to
@@ -12,11 +14,6 @@
[ Noèl Köthe ]
* fixing lintian warning "build-depends-on-1-revision"
- [ Steve Langasek ]
- * New patch debian/patches/CVE-2008-3789-ldb-permissions.patch, fixing the
- default permissions on ldb databases. Addresses CVE-2008-3789,
- closes: #496073.
-
-- Steve Langasek <vorlon at debian.org> Wed, 27 Aug 2008 10:19:59 -0700
samba (2:3.2.1-1) unstable; urgency=low
Deleted: trunk/samba/debian/patches/CVE-2008-3789-ldb-permissions.patch
===================================================================
--- trunk/samba/debian/patches/CVE-2008-3789-ldb-permissions.patch 2008-08-27 18:15:01 UTC (rev 2152)
+++ trunk/samba/debian/patches/CVE-2008-3789-ldb-permissions.patch 2008-08-27 18:20:11 UTC (rev 2153)
@@ -1,29 +0,0 @@
-From 2b72b0fe8d17b8ea29f966196862a9b895a55f62 Mon Sep 17 00:00:00 2001
-From: Karolin Seeger <kseeger at samba.org>
-Date: Mon, 25 Aug 2008 09:37:26 +0200
-Subject: [PATCH] ldb: Fix permissions of group_mapping.ldb.
-
-This one fixes bug #5715.
-Thanks to Steve Langasek for reporting!
-
-Karolin
----
- source/lib/ldb/common/ldb.c | 2 +-
- 1 files changed, 1 insertions(+), 1 deletions(-)
-
-diff --git a/source/lib/ldb/common/ldb.c b/source/lib/ldb/common/ldb.c
-index e469c49..743711b 100644
---- a/source/lib/ldb/common/ldb.c
-+++ b/source/lib/ldb/common/ldb.c
-@@ -51,7 +51,7 @@ struct ldb_context *ldb_init(void *mem_ctx)
- }
-
- ldb_set_utf8_default(ldb);
-- ldb_set_create_perms(ldb, 0666);
-+ ldb_set_create_perms(ldb, 0600);
-
- return ldb;
- }
---
-1.5.4.4
-
Modified: trunk/samba/debian/patches/series
===================================================================
--- trunk/samba/debian/patches/series 2008-08-27 18:15:01 UTC (rev 2152)
+++ trunk/samba/debian/patches/series 2008-08-27 18:20:11 UTC (rev 2153)
@@ -18,4 +18,3 @@
smbtar-bashism.patch
no-unnecessary-cups.patch
shrink-dead-code.patch
-CVE-2008-3789-ldb-permissions.patch
Modified: trunk/samba/debian/samba.postinst
===================================================================
--- trunk/samba/debian/samba.postinst 2008-08-27 18:15:01 UTC (rev 2152)
+++ trunk/samba/debian/samba.postinst 2008-08-27 18:20:11 UTC (rev 2153)
@@ -82,14 +82,6 @@
# ------------------------- Debconf questions end ---------------------
-# fix the permissions on group_mapping.ldb (CVE-2008-3789)
-if dpkg --compare-versions "$2" lt-nl 2:3.2.2-1 \
- && dpkg --compare-versions "$2" ge 3.2.0~pre2-1 \
- && [ -e /var/lib/samba/group_mapping.ldb ]
-then
- chmod 0600 /var/lib/samba/group_mapping.ldb
-fi
-
# move a tdb that should have been in /var/lib all along
if dpkg --compare-versions "$2" lt-nl 3.0.25b-2 \
&& dpkg --compare-versions "$2" ge 3.0.23-1 \
More information about the Pkg-samba-maint
mailing list