kpriv/pkgsrc
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
pkgsrc/net/samba4
History
adam 06d75a9388 samba4: updated to 4.10.2 
Release Notes for Samba 4.10.2

This is a security release in order to address the following defects:
o  CVE-2019-3870 (World writable files in Samba AD DC private/ dir)
o  CVE-2019-3880 (Save registry file outside share as unprivileged user)

Details

o  CVE-2019-3870:
   During the provision of a new Active Directory DC, some files in the private/
   directory are created world-writable.

o  CVE-2019-3880:
   Authenticated users with write permission can trigger a symlink traversal to
   write or detect files outside the Samba share.

For more details and workarounds, please refer to the security advisories.

Changes since 4.10.1:
* BUG 13834: CVE-2019-3870: pysmbd: Ensure a zero umask is set for
  smbd.mkdir().
* BUG 13851: CVE-2018-14629: rpc: winreg: Remove implementations of
  SaveKey/RestoreKey.
2019-04-08 18:35:58 +00:00
..
files
patches samba4: updated to 4.10.0 2019-03-20 19:09:10 +00:00
buildlink3.mk samba4: updated to 4.10.0 2019-03-20 19:09:10 +00:00
DESCR
distinfo samba4: updated to 4.10.2 2019-04-08 18:35:58 +00:00
hacks.mk
Makefile samba4: updated to 4.10.2 2019-04-08 18:35:58 +00:00
MESSAGE.rcd
options.mk samba4: buidling fixes 2018-12-22 01:13:52 +00:00
PLIST samba4: updated to 4.10.2 2019-04-08 18:35:58 +00:00
PLIST.Linux samba4: Add PLIST.Linux, fixes NetBSD/pkgsrc#24. 2018-09-20 10:40:14 +00:00
PLIST.SunOS