Your message dated Thu, 06 May 2021 20:19:31 +0000
with message-id <[email protected]>
and subject line Bug#987811: fixed in samba 2:4.13.5+dfsg-2
has caused the Debian Bug report #987811,
regarding samba: CVE-2021-20254
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
987811: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=987811
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Source: samba
Version: 2:4.13.5+dfsg-1
Severity: grave
Tags: security upstream
Justification: user security hole
Forwarded: https://bugzilla.samba.org/show_bug.cgi?id=14571
X-Debbugs-Cc: [email protected], Debian Security Team <[email protected]>
Control: found -1 2:4.9.5+dfsg-5
Hi,
The following vulnerability was published for samba.
I think would be best if we can have this fixed in bullseye, though
note we marked it for now no-dsa for buster itself.
CVE-2021-20254[0]:
| Negative idmap cache entries can cause incorrect group entries in
| the Samba file server process token
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2021-20254
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20254
[1] https://bugzilla.samba.org/show_bug.cgi?id=14571
[2] https://www.samba.org/samba/security/CVE-2021-20254.html
[3]
https://git.samba.org/?p=samba.git;a=commitdiff;h=75ad84167f5d2379557ec078d17c9a1c244402fc
Please adjust the affected versions in the BTS as needed.
Regards,
Salvatore
--- End Message ---
--- Begin Message ---
Source: samba
Source-Version: 2:4.13.5+dfsg-2
Done: Mathieu Parent <[email protected]>
We believe that the bug you reported is fixed in the latest version of
samba, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Mathieu Parent <[email protected]> (supplier of updated samba package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Thu, 06 May 2021 21:09:29 +0200
Source: samba
Architecture: source
Version: 2:4.13.5+dfsg-2
Distribution: unstable
Urgency: high
Maintainer: Debian Samba Maintainers <[email protected]>
Changed-By: Mathieu Parent <[email protected]>
Closes: 987209 987811
Changes:
samba (2:4.13.5+dfsg-2) unstable; urgency=high
.
* CVE-2021-20254: Negative idmap cache entries can cause incorrect group
entries in the Samba file server process token (Closes: #987811)
* Add Breaks+Replaces: samba-dev (<< 2:4.11) (Closes: #987209)
Checksums-Sha1:
7f19aae3d1acc2d5afcf5f84eabf0560ff3d2e60 4349 samba_4.13.5+dfsg-2.dsc
5e710b135dad54b16aedbbadbf605c1457737187 249168
samba_4.13.5+dfsg-2.debian.tar.xz
8ccb58b76b9d273f75d20cbb92e57cbc1feca7ad 7222
samba_4.13.5+dfsg-2_source.buildinfo
Checksums-Sha256:
11ff50c5568aa4e13d95a8effda707c7ac554f3088c0b4157e8d8b7970af66ff 4349
samba_4.13.5+dfsg-2.dsc
97f64fe6134a7fc16f79b1491aa421fa87bc6f9848f5423c0c0f1e8e092f6b24 249168
samba_4.13.5+dfsg-2.debian.tar.xz
f42c5bdd1dce60710c7497f48c5a7a93e8d7c43bfc60822cfa3b7bd54fab3ce2 7222
samba_4.13.5+dfsg-2_source.buildinfo
Files:
96c42098101e61ea3d515a0ab20c6c7d 4349 net optional samba_4.13.5+dfsg-2.dsc
6b2b8c358172261db740160de3a68b1d 249168 net optional
samba_4.13.5+dfsg-2.debian.tar.xz
37a167b3bbd6f7cd982dbfdae070df08 7222 net optional
samba_4.13.5+dfsg-2_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=fgK6
-----END PGP SIGNATURE-----
--- End Message ---
