Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package samba for openSUSE:Factory checked in at 2023-10-13 23:13:42 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/samba (Old) and /work/SRC/openSUSE:Factory/.samba.new.20540 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "samba" Fri Oct 13 23:13:42 2023 rev:300 rq:1117041 version:4.19.1+git.312.c912b3d2ef6 Changes: -------- --- /work/SRC/openSUSE:Factory/samba/samba.changes 2023-10-05 20:03:36.887713754 +0200 +++ /work/SRC/openSUSE:Factory/.samba.new.20540/samba.changes 2023-10-13 23:13:49.397170306 +0200 @@ -1,0 +2,16 @@ +Tue Oct 10 15:12:38 UTC 2023 - Noel Power <nopo...@suse.com> + +- CVE-2023-4091: samba: Client can truncate file with read-only + permissions; (bsc#1215904); (bso#15439). +- CVE-2023-42669: samba: rpcecho, enabled and running in AD DC, + allows blocking sleep on request; (bso#1215905); (bso#15474). +- CVE-2023-42670: samba: The procedure number is out of range + when starting Active Directory Users and Computers; + (bsc#1215906); (bso#15473). +- CVE-2023-3961: samba: Unsanitized client pipe name passed to + local_np_connect(); (bsc#1215907); (bso#15422). +- CVE-2023-4154: samba: dirsync allows SYSTEM access with only + "GUID_DRS_GET_CHANGES" right, not "GUID_DRS_GET_ALL_CHANGES; + (bsc#1215908); (bso#15424). + +------------------------------------------------------------------- Old: ---- samba-4.19.0+git.306.19d2e214c58.tar.bz2 New: ---- samba-4.19.1+git.312.c912b3d2ef6.tar.bz2 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ samba.spec ++++++ --- /var/tmp/diff_new_pack.gnordk/_old 2023-10-13 23:13:50.741219056 +0200 +++ /var/tmp/diff_new_pack.gnordk/_new 2023-10-13 23:13:50.745219201 +0200 @@ -158,7 +158,7 @@ %endif BuildRequires: sysuser-tools -Version: 4.19.0+git.306.19d2e214c58 +Version: 4.19.1+git.312.c912b3d2ef6 Release: 0 URL: https://www.samba.org/ Obsoletes: samba-32bit < %{version} @@ -1147,7 +1147,6 @@ %{_libdir}/samba/rpcd_fsrvp %{_libdir}/samba/rpcd_lsad %{_libdir}/samba/rpcd_mdssvc -%{_libdir}/samba/rpcd_rpcecho %{_libdir}/samba/rpcd_spoolss %{_libdir}/samba/rpcd_winreg %{_libdir}/samba/samba-bgqd ++++++ samba-4.19.0+git.306.19d2e214c58.tar.bz2 -> samba-4.19.1+git.312.c912b3d2ef6.tar.bz2 ++++++ /work/SRC/openSUSE:Factory/samba/samba-4.19.0+git.306.19d2e214c58.tar.bz2 /work/SRC/openSUSE:Factory/.samba.new.20540/samba-4.19.1+git.312.c912b3d2ef6.tar.bz2 differ: char 11, line 1
