The annotated tag, samba-4.19.1 has been created at a7c89e5d204ff7d0c00ad8c601e7edab74d70242 (tag) tagging d9e90993b4049bac99227c8f3c8823df45f7f46d (commit) replaces samba-4.19.0 tagged by Jule Anger on Tue Oct 10 11:07:09 2023 +0200
- Log ----------------------------------------------------------------- samba: tag release samba-4.19.1 -----BEGIN PGP SIGNATURE----- iQIzBAABCgAdFiEEgfXigyvSVFoYl7cTqplEL7aAtiAFAmUlFD0ACgkQqplEL7aA tiAT0g//VzVSlXRQiOmZZWq5RYPL1Rb9VZmspNcIBH7rDpiLMiuKcP0jceuFvwF4 KAxJw1FGMpJ48E5MBtGhdkYloVl8ZCNj4QqdoRfA938QOlAAdvu3JRbSqO6ZlD34 s8E0TXTHTnwA0m8fHbReSAMOcWOtiQadALP1PCLNkngXCQ4Dwp601+0qP7U2T7TT XCeacyIF28RLjRFHdVuNi3XueGmSR1UNDOaemfuvT2Sqvf4DaCptWc2x4BfyTAZ6 3VX4Ub+h6eMNezzWcGHC3LF+giQKHaCwJd8oUEoV/unl7/VXruyMKKduiyu2vzaW B3MnnrjcYXwJvF6Sa7h/ArOgUdRAyt0DvF/0iKj7N7UMPtVpqIGMxrSyLaw6ZtGl K38dSv33g5BfiOl71x6TwvJtn9KLFjVR7qvZ0icKdcWkbRtnCxXtJDIcUzN/PFdP o+/1jN/1xI2YrVLKnO4Em2IY0bD427BhBV8PGEh33/LQS9pNTtIC1rRbihQMapaZ KvrkfJ/u2t0ZOBy8YnelU11Iiedgd0GVeFnXJs+O7+PoCqIugbWtX7w+m9k26Onj Zz1XlSBQ7aKqOtjpii/VuYtNmCh4SHqwtjyTvxnxJ9U2ySrGcrGSzZXCSsyzGRf9 zRE/3lCAZTZFBgHUswEoHGUD9MdUErS2+mAblFl46UyZSj1DbGQ= =L/tJ -----END PGP SIGNATURE----- Andreas Schneider (1): CVE-2023-4154 s4:dsdb:tests: Fix code spelling Andrew Bartlett (12): CVE-2023-4154 dsdb/tests: Do not run SimpleDirsyncTests twice CVE-2023-4154 dsdb/tests: Use self.addCleanup() and delete_force() CVE-2023-4154 dsdb/tests: Force the test attribute to be not-confidential at the start CVE-2023-4154 dsdb/tests: Check that secret attributes are not visible with DirSync ever. CVE-2023-4154 dsdb/tests: Speed up DirSync test by only checking positive matches once CVE-2023-4154 dsdb/tests: Add test for SEARCH_FLAG_RODC_ATTRIBUTE behaviour CVE-2023-4154 dsdb/tests: Extend attribute read DirSync tests CVE-2023-4154: Unimplement the original DirSync behaviour without LDAP_DIRSYNC_OBJECT_SECURITY CVE-2023-42669 s4-rpc_server: Disable rpcecho server by default CVE-2023-42669 s3-rpc_server: Disable rpcecho for consistency with the AD DC CVE-2023-42670 s3-rpc_server: Strictly refuse to start RPC servers in conflict with AD DC CVE-2023-42670 s3-rpc_server: Remove cross-check with "samba" EPM lookup Jeremy Allison (3): CVE-2023-3961:s3:smbd: Catch any incoming pipe path that could exit socket_dir. CVE-2023-3961:s3:torture: Add test SMB2-INVALID-PIPENAME to show we allow bad pipenames with unix separators through to the UNIX domain socket code. CVE-2023-3961:s3: smbd: Remove the SMB_ASSERT() that crashes on bad pipenames. Jule Anger (3): VERSION: Bump version up to Samba 4.19.1... WHATSNEW: Add release notes for Samba 4.19.1. VERSION: Disable GIT_SNAPSHOT for the 4.19.1 release. Ralph Boehme (2): CVE-2023-4091: smbtorture: test overwrite dispositions on read-only file CVE-2023-4091: smbd: use open_access_mask for access check in open_file() ----------------------------------------------------------------------- -- Samba Shared Repository