o CVE-2009-1888:
In Samba 3.0.31 to 3.3.5 (inclusive), an uninitialized read of a
data value can potentially affect access control when "dos filemode"
is set to "yes".
Security: CVE-2009-1888
3.3.4 include:
o Fix domain logins for WinXP clients pre SP3 (bug #6263).
o Fix samr_OpenDomain access checks (bug #6089).
o Fix usrmgr.exe creating a user (bug #6243).
o Migrating from 3.0.x to 3.3.x can fail to update passdb.tdb
correctly (bug #6195).
o Fix serving of files with colons to CIFS/VFS client (bug #6196).
o Fix "map readonly" (bug #6186).
Major enhancements in Samba 3.3.2 include:
* Fix "force group" (bug #6155).
* Fix saving of files on Samba share using MS Office 2007 (bug #6160).
* Fix guest authentication in setups with "security = share" and
"guest ok = yes" when Winbind is running.
* Fix corruptions of source path in tar mode of smbclient (bug #6161).
Submitted by: timur
Reviewed by:
Approved by:
Obtained from:
MFC after:
Security:
Brand new version of Samba 3.3.1, the starter of the 3.3 series. New
features, new bugs. Enjoy!
Major enhancements in Samba 3.3 include:
General changes:
o The passdb tdbsam version has been raised.
Configuration/installation:
o Splitting of library directory into library directory and separate
modules directory.
o The default value of "ldap ssl" has been changed to "start tls".
File Serving:
o Extended Cluster support.
o New experimental VFS modules "vfs_acl_xattr" and "vfs_acl_tdb"
to store NTFS ACLs on Samba file servers.
Winbind:
o Simplified idmap configuration.
o New idmap backends "adex" and "hash".
o Added new parameter "winbind reconnect delay".
o Added support for user and group aliasing.
o Added support for multiple domains to idmap_ad.
Administrative tools:
o The destination "all" of smbcontrol does now affect all running
daemons including nmbd and winbindd.
o New 'net rpc vampire keytab' and 'net rpc vampire ldif' commands.
o The 'net' utility can now use kerberos for joining and authentication.
o The 'wbinfo' utility can now add, modify and remove identity mapping entries.
