Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package samba for openSUSE:Factory checked in at 2022-08-05 19:50:23 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/samba (Old) and /work/SRC/openSUSE:Factory/.samba.new.1521 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "samba" Fri Aug 5 19:50:23 2022 rev:284 rq:993097 version:4.16.4+git.297.1497eb221ed Changes: -------- --- /work/SRC/openSUSE:Factory/samba/samba.changes 2022-07-22 19:20:30.424586488 +0200 +++ /work/SRC/openSUSE:Factory/.samba.new.1521/samba.changes 2022-08-05 19:50:53.833439579 +0200 @@ -1,0 +2,47 @@ +Thu Jul 28 11:56:31 UTC 2022 - Samuel Cabrero <scabr...@suse.de> + +- Update to 4.16.4 + * CVE-2022-2031: Samba AD users can bypass certain restrictions + associated with changing passwords; (bsc#1201495); (bso#15047); + * CVE-2022-32744: Samba AD users can forge password change + requests for any user; (bsc#1201493); (bso#15074); + * CVE-2022-32745: Samba AD users can crash the server process + with an LDAP add or modify request; (bsc#1201492); (bso#15008); + * CVE-2022-32746: Samba AD users can induce a use-after-free in + the server process with an LDAP add or modify request; + (bsc#1201490); (bso#15009); + * CVE-2022-32742: Server memory information leak via SMB1; + (bsc#1201496); (bso#15085); + +------------------------------------------------------------------- +Tue Jul 19 11:25:59 UTC 2022 - Samuel Cabrero <scabr...@suse.de> + +- Update to 4.16.3 + * Using vfs_streams_xattr and deleting a file causes a panic; + (bso#15099); + * Add support for bind 9.18; (bso#14986); + * logging dsdb audit to specific files does not work; + (bso#15076); + * Problem when winbind renews Kerberos; (bso#14979); + (bsc#1196224); + * Samba with new lorikeet-heimdal fails to build on gcc 12.1 in + developer mode; (bso#15095); + * Crash in streams_xattr because fsp->base_fsp->fsp_name is + NULL; (bso#15105); + * Crash in rpcd_classic - NULL pointer deference in + mangle_is_mangled(); (bso#15118); + * smbclient commands del & deltree fail with + NT_STATUS_OBJECT_PATH_NOT_FOUND with DFS; (bso#15100); + (bsc#1200556); + * Fix check for chown when processing NFSv4 ACL; (bso#15120); + * The pcap background queue process should not be stopped; + (bso#15082); + * testparm: Fix typo in idmap rangesize check; (bso#15097); + * net ads info returns LDAP server and LDAP server name as + null; (bso#15106); + * ldconfig: /lib64/libsmbconf.so.0 is not a symbolic link; + (bso#15108); + * CTDB child process logging does not work as expected; + (bso#15090); + +------------------------------------------------------------------- Old: ---- samba-4.16.2+git.288.4d64e4651f0.tar.bz2 New: ---- samba-4.16.4+git.297.1497eb221ed.tar.bz2 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ samba.spec ++++++ --- /var/tmp/diff_new_pack.gaCjv9/_old 2022-08-05 19:50:54.801442079 +0200 +++ /var/tmp/diff_new_pack.gaCjv9/_new 2022-08-05 19:50:54.805442089 +0200 @@ -145,7 +145,7 @@ %endif BuildRequires: sysuser-tools -Version: 4.16.2+git.288.4d64e4651f0 +Version: 4.16.4+git.297.1497eb221ed Release: 0 URL: https://www.samba.org/ Obsoletes: samba-32bit < %{version} @@ -1865,6 +1865,7 @@ %{_libdir}/samba/bind9/dlz_bind9_12.so %{_libdir}/samba/bind9/dlz_bind9_14.so %{_libdir}/samba/bind9/dlz_bind9_16.so +%{_libdir}/samba/bind9/dlz_bind9_18.so %dir %{_libdir}/samba/gensec %{_libdir}/samba/gensec/krb5.so %{_libdir}/samba/libdlz-bind9-for-torture-samba4.so ++++++ samba-4.16.2+git.288.4d64e4651f0.tar.bz2 -> samba-4.16.4+git.297.1497eb221ed.tar.bz2 ++++++ /work/SRC/openSUSE:Factory/samba/samba-4.16.2+git.288.4d64e4651f0.tar.bz2 /work/SRC/openSUSE:Factory/.samba.new.1521/samba-4.16.4+git.297.1497eb221ed.tar.bz2 differ: char 11, line 1
