samba (2:3.4.0-3ubuntu5.6) karmic-security; urgency=low
* SECURITY UPDATE: arbitrary file disclosure via wide links
- debian/patches/security-CVE-2010-0926.patch: disable wide links when
UNIX extensions are enabled in source3/include/proto.h,
source3/param/loadparm.c, source3/smbd/service.c,
source3/smbd/trans2.c, source3/smbd/vfs.c,
docs/htmldocs/manpages/smb.conf.5.html and docs/manpages/smb.conf.5.
- CVE-2010-0926
* WARNING: This changes the default samba behaviour. For security
reasons, it is no longer possible to use wide links and UNIX
extensions at the same time. After applying this security update, wide
links will be disabled automatically as UNIX extensions are turned on
by default. If wide links are required, you may re-enable them by
adding "unix extensions = no" to the [global] section of
the /etc/samba/smb.conf configuration file.
Date: Mon, 22 Mar 2010 16:57:53 -0400
Changed-By: Marc Deslauriers <[email protected]>
Maintainer: Ubuntu Core Developers <[email protected]>
https://launchpad.net/ubuntu/karmic/+source/samba/2:3.4.0-3ubuntu5.6
Format: 1.8
Date: Mon, 22 Mar 2010 16:57:53 -0400
Source: samba
Binary: samba samba-common-bin samba-common samba-tools smbclient swat
samba-doc samba-doc-pdf smbfs libpam-smbpass libsmbclient libsmbclient-dev
winbind samba-dbg libwbclient0
Architecture: source
Version: 2:3.4.0-3ubuntu5.6
Distribution: karmic-security
Urgency: low
Maintainer: Ubuntu Core Developers <[email protected]>
Changed-By: Marc Deslauriers <[email protected]>
Description:
libpam-smbpass - pluggable authentication module for Samba
libsmbclient - shared library for communication with SMB/CIFS servers
libsmbclient-dev - development files for libsmbclient
libwbclient0 - Samba winbind client library
samba - SMB/CIFS file, print, and login server for Unix
samba-common - common files used by both the Samba server and client
samba-common-bin - common files used by both the Samba server and client
samba-dbg - Samba debugging symbols
samba-doc - Samba documentation
samba-doc-pdf - Samba documentation in PDF format
samba-tools - Samba testing utilities
smbclient - command-line SMB/CIFS clients for Unix
smbfs - Samba file system utilities
swat - Samba Web Administration Tool
winbind - Samba nameservice integration server
Changes:
samba (2:3.4.0-3ubuntu5.6) karmic-security; urgency=low
.
* SECURITY UPDATE: arbitrary file disclosure via wide links
- debian/patches/security-CVE-2010-0926.patch: disable wide links when
UNIX extensions are enabled in source3/include/proto.h,
source3/param/loadparm.c, source3/smbd/service.c,
source3/smbd/trans2.c, source3/smbd/vfs.c,
docs/htmldocs/manpages/smb.conf.5.html and docs/manpages/smb.conf.5.
- CVE-2010-0926
* WARNING: This changes the default samba behaviour. For security
reasons, it is no longer possible to use wide links and UNIX
extensions at the same time. After applying this security update, wide
links will be disabled automatically as UNIX extensions are turned on
by default. If wide links are required, you may re-enable them by
adding "unix extensions = no" to the [global] section of
the /etc/samba/smb.conf configuration file.
Checksums-Sha1:
400f46e75f06200a698d87c2fae156653e3f1915 2199 samba_3.4.0-3ubuntu5.6.dsc
799d82597b9b352654b18b3181fb82e4af568dd3 503829 samba_3.4.0-3ubuntu5.6.diff.gz
Checksums-Sha256:
b288aecc00b87adb69245c6bcbfb3f5c56abccb510a43eef9948ba29bb2c1257 2199
samba_3.4.0-3ubuntu5.6.dsc
91affdc85370af63e469f5dd4c85b492bbedbb1a9e1d2884f114960157ba2023 503829
samba_3.4.0-3ubuntu5.6.diff.gz
Files:
1e54248e7197bbde98c3ae6a5ffe4bcb 2199 net optional samba_3.4.0-3ubuntu5.6.dsc
54dd2bd600f21381f8b61c655effbd1e 503829 net optional
samba_3.4.0-3ubuntu5.6.diff.gz
Original-Maintainer: Debian Samba Maintainers
<[email protected]>
--
Karmic-changes mailing list
[email protected]
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/karmic-changes
