Up to [cvs.NetBSD.org] / pkgsrc / net / samba33
Request diff between arbitrary revisions
Keyword substitution: kv
Default branch: MAIN
Remove samba30 and samba33, as stated by Aleksej Saushev on Jul 7, 2012.
Revbump after graphics/jpeg and textproc/icu
recursive bump from cyrus-sasl libsasl2 shlib major bump.
Drop superfluous PKG_DESTDIR_SUPPORT, "user-destdir" is default these days.
Bump all packages that use perl, or depend on a p5-* package, or are called p5-*. I hope that's all of them.
Pullup ticket #3731 - requested by jdf net/samba33: security fix Revisions pulled up: - net/samba33/Makefile 1.21 - net/samba33/distinfo 1.10 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: asau Date: Wed Apr 11 10:10:58 UTC 2012 Modified Files: pkgsrc/net/samba33: Makefile distinfo Log Message: Apply official patch to address CVE-2012-1182 ("root" credential remote code execution). To generate a diff of this commit: cvs rdiff -u -r1.20 -r1.21 pkgsrc/net/samba33/Makefile cvs rdiff -u -r1.9 -r1.10 pkgsrc/net/samba33/distinfo
Apply official patch to address CVE-2012-1182 ("root" credential remote code execution).
Add patch for CVE-2012-0870. Bump PKGREVISION.
Revbump for a) tiff update to 4.0 (shlib major change) b) glib2 update 2.30.2 (adds libffi dependency to buildlink3.mk) Enjoy.
Move the options.mk file for net/samba30 and net/samba33 from net/samba to net/samba33 because of up coming changes to net/samba/options.mk that are in-compatible with 30 and 33.
Add PLIST.Linux Bump PKGREVISION
Convert packages with add --libdir=* to CONFIGURE_ARGS to use GNU_CONFIGURE_LIBDIR or GNU_CONFIGURE_LIBSUBDIR.
Pullup ticket #3479 - requested by taca net/samba33 security update. Revisions pulled up: - net/samba33/Makefile 1.15 - net/samba33/distinfo 1.7 - net/samba33/patches/patch-af 1.2 --- Module Name: pkgsrc Committed By: taca Date: Wed Jul 27 00:53:37 UTC 2011 Modified Files: pkgsrc/net/samba33: Makefile distinfo pkgsrc/net/samba33/patches: patch-af Log Message: Update samba33 package to 3.3.16; security fix for swat. ============================== Release Notes for Samba 3.3.16 July 26, 2011 ============================== This is a security release in order to address CVE-2011-2522 (Cross-Site Request Forgery in SWAT) and CVE-2011-2694 (Cross-Site Scripting vulnerability in SWAT). o CVE-2011-2522: The Samba Web Administration Tool (SWAT) in Samba versions 3.0.x to 3.5.9 are affected by a cross-site request forgery. o CVE-2011-2694: The Samba Web Administration Tool (SWAT) in Samba versions 3.0.x to 3.5.9 are affected by a cross-site scripting vulnerability. Please note that SWAT must be enabled in order for these vulnerabilities to be exploitable. By default, SWAT is *not* enabled on a Samba install. Changes since 3.3.15 -------------------- o Kai Blin <kai@samba.org> * BUG 8289: SWAT contains a cross-site scripting vulnerability. * BUG 8290: CSRF vulnerability in SWAT.
Update samba33 package to 3.3.16; security fix for swat. ============================== Release Notes for Samba 3.3.16 July 26, 2011 ============================== This is a security release in order to address CVE-2011-2522 (Cross-Site Request Forgery in SWAT) and CVE-2011-2694 (Cross-Site Scripting vulnerability in SWAT). o CVE-2011-2522: The Samba Web Administration Tool (SWAT) in Samba versions 3.0.x to 3.5.9 are affected by a cross-site request forgery. o CVE-2011-2694: The Samba Web Administration Tool (SWAT) in Samba versions 3.0.x to 3.5.9 are affected by a cross-site scripting vulnerability. Please note that SWAT must be enabled in order for these vulnerabilities to be exploitable. By default, SWAT is *not* enabled on a Samba install. Changes since 3.3.15 -------------------- o Kai Blin <kai@samba.org> * BUG 8289: SWAT contains a cross-site scripting vulnerability. * BUG 8290: CSRF vulnerability in SWAT.
recursive bump from gettext-lib shlib bump.
Pullup ticket #3367 - requested by taca net/samba33 security fix. Revisions pulled up: - net/samba33/Makefile 1.13 - net/samba33/distinfo 1.6 --- Module Name: pkgsrc Module Name: pkgsrc Committed By: taca Date: Mon Feb 28 14:34:09 UTC 2011 Modified Files: pkgsrc/net/samba33: Makefile distinfo Log Message: Update samba33 pacakge to 3.3.15. Release Announcements ===================== Samba 3.5.7, 3.4.12 and 3.3.15 are security releases in order to address CVE-2011-0719. o CVE-2011-0719: All current released versions of Samba are vulnerable to a denial of service caused by memory corruption. Range checks on file descriptors being used in the FD_SET macro were not present allowing stack corruption. This can cause the Samba code to crash or to loop attempting to select on a bad file descriptor set. A connection to a file share, or a local account is needed to exploit this problem, either authenticated or unauthenticated (guest connection). Currently we do not believe this flaw is exploitable beyond a crash or causing the code to loop, but on the advice of our security reviewers we are releasing fixes in case an exploit is discovered at a later date. Changes ------- o Jeremy Allison <jra at samba.org> * BUG 7949: Fix DoS in Winbind and smbd with many file descriptors open.
Update samba33 pacakge to 3.3.15. Release Announcements ===================== Samba 3.5.7, 3.4.12 and 3.3.15 are security releases in order to address CVE-2011-0719. o CVE-2011-0719: All current released versions of Samba are vulnerable to a denial of service caused by memory corruption. Range checks on file descriptors being used in the FD_SET macro were not present allowing stack corruption. This can cause the Samba code to crash or to loop attempting to select on a bad file descriptor set. A connection to a file share, or a local account is needed to exploit this problem, either authenticated or unauthenticated (guest connection). Currently we do not believe this flaw is exploitable beyond a crash or causing the code to loop, but on the advice of our security reviewers we are releasing fixes in case an exploit is discovered at a later date. Changes ------- o Jeremy Allison <jra at samba.org> * BUG 7949: Fix DoS in Winbind and smbd with many file descriptors open.
add ads, ldap, pam, and winbind to default pkg options bump pkg revision
Pullup ticket #3223 - requested by taca net/samba33: security update Revisions pulled up: - net/samba33/Makefile 1.11 - net/samba33/distinfo 1.5 --- Module Name: pkgsrc Committed By: taca Date: Tue Sep 14 13:08:23 UTC 2010 Modified Files: pkgsrc/net/samba33: Makefile distinfo Log Message: Update samba33 package to 3.3.14. ============================== Release Notes for Samba 3.3.14 September 14, 2010 ============================== This is a security release in order to address CVE-2010-3069. o CVE-2010-3069: All current released versions of Samba are vulnerable to a buffer overrun vulnerability. The sid_parse() function (and related dom_sid_parse() function in the source4 code) do not correctly check their input lengths when reading a binary representation of a Windows SID (Security ID). This allows a malicious client to send a sid that can overflow the stack variable that is being used to store the SID in the Samba smbd server.
Update samba33 package to 3.3.14. ============================== Release Notes for Samba 3.3.14 September 14, 2010 ============================== This is a security release in order to address CVE-2010-3069. o CVE-2010-3069: All current released versions of Samba are vulnerable to a buffer overrun vulnerability. The sid_parse() function (and related dom_sid_parse() function in the source4 code) do not correctly check their input lengths when reading a binary representation of a Windows SID (Security ID). This allows a malicious client to send a sid that can overflow the stack variable that is being used to store the SID in the Samba smbd server.
Pullup ticket #3148 - requested by taca net/samba33: security update Revisions pulled up: - net/samba33/Makefile 1.10 - net/samba33/distinfo 1.4 --- Module Name: pkgsrc Committed By: taca Date: Wed Jun 16 14:34:35 UTC 2010 Modified Files: pkgsrc/net/samba33: Makefile distinfo Log Message: Update samba33 package to 3.3.13. Changes since 3.3.12 -------------------- o Jeremy Allison <jra@samba.org> * BUG 7494: Fix for CVE-2010-2063.
Update samba33 package to 3.3.13. Changes since 3.3.12 -------------------- o Jeremy Allison <jra@samba.org> * BUG 7494: Fix for CVE-2010-2063.
Pullup ticket #3078 - requested by sborrill: net/samba: build fix and bug fix net/samba33: build fix and bug fix Revisions pulled up: - net/samba/Makefile 1.199-1.200 - net/samba/files/winbindd.sh 1.5 - net/samba33/Makefile 1.8-1.9 --- Module Name: pkgsrc Committed By: sborrill Date: Wed Apr 14 14:51:01 UTC 2010 Modified Files: pkgsrc/net/samba: Makefile pkgsrc/net/samba33: Makefile Log Message: Add openssl bl3.mk file so that we play nicely with PREFER_PKGSRC+=openssl --- Module Name: pkgsrc Committed By: sborrill Date: Thu Apr 15 09:36:50 UTC 2010 Modified Files: pkgsrc/net/samba/files: winbindd.sh Log Message: winbindd does not have a -B flag. As far as I can see, it never did have (It was added to this rc.d script as part of the upgrade to 3.0.20b, but winbindd in 3.0.20b does not have a -B flag). --- Module Name: pkgsrc Committed By: sborrill Date: Thu Apr 15 09:38:09 UTC 2010 Modified Files: pkgsrc/net/samba: Makefile pkgsrc/net/samba33: Makefile Log Message: Bump PKGREVISION due to removing -B flag from winbindd rc.d script
Bump PKGREVISION due to removing -B flag from winbindd rc.d script
Add openssl bl3.mk file so that we play nicely with PREFER_PKGSRC+=openssl
Reset PKGREVISION while updating to 3.3.12.
Update samba33 package to 3.3.12. o CVE-2010-0728: In Samba releases 3.5.0, 3.4.6 and 3.3.11, new code was added to fix a problem with Linux asynchronous IO handling. This code introduced a bad security flaw on Linux platforms if the binaries were built on Linux platforms with libcap support. The flaw caused all smbd processes to inherit CAP_DAC_OVERRIDE capabilities, allowing all file system access to be allowed even when permissions should have denied access.
Disable PIE on NetBSD/macppc to fix use of unsupported relocation type in. Samba 3.0 and 3.3. They were completely broken before this. Bump PKGREVISION for both samba and samba33. Fix from PR pkg/38961 by Makoto Fujiwara <makoto at ki dot nu>.
Update samba33 pacakge to 3.3.11. Changes since 3.3.10 -------------------- o Jeremy Allison <jra@samba.org> * BUG 6557: Fix vfs_full_audit. * BUG 7036: Fix 'net rpc getsid' in hardened Windows environments. * BUG 7045: Fix bad (non memory copying) interfaces in smbc_setXXXX calls. * BUG 7067: Fix failing of smbd to respond to a read or a write caused by Linux asynchronous IO (aio). * BUG 7072: Fix unlocking of accounts from ldap. * BUG 7104: "wide links" and "unix extensions" are incompatible. * BUG 7122: Fix reading of large browselist. * BUG 7154: "mangling method = hash" can crash storing a name containing a '.'. * BUG 7155: Valgrind Conditional jump or move depends on uninitialised value(s) error when "mangling method = hash". o Gunther Deschner <gd@samba.org> * BUG 7043: Fix crash bug in "SMBC_parse_path". o Volker Lendecke <vl@samba.org> * BUG 5626: Fix build on AIX. * BUG 5885: Fix bogus ip address in SWAT. * BUG 7046: Fix a crash in libsmbclient used against the OpenSolaris CIFS server. o Stefan Metzmacher <metze@samba.org> * BUG 7098: Fix results of 'smbclient -L' with a large browse list. * BUG 7170: Fix handling of external domains in setups with one way trusts. o William Jojo <w.jojo@hvcc.edu> * BUG 7052: Fix DFS on AIX (maybe others). o Bo Yang <boyang@samba.org> * BUG 7106: Fix malformed require_membership_of_sid.
Really bump PKGREVISION. Noted by dieter roelants via private mail.
Fix PLIST problem when winbind PKG_OPTION isn't enabled. Bump PKGREVISION to prevent broken binary package.
Importing Samba 3.3.10 as net/samba33. This isn't latest release, but diffrence from current package is minimal supported release. Since changes are too huge to write here, please refer each release notes: http://www.samba.org/samba/history/ And this pacakge already contain fix for CVE-2009-3297.
Initial revision