Hello community, here is the log from the commit of package samba.3926 for openSUSE:13.1:Update checked in at 2015-07-28 10:41:27 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:13.1:Update/samba.3926 (Old) and /work/SRC/openSUSE:13.1:Update/.samba.3926.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "samba.3926" Changes: -------- New Changes file: --- /dev/null 2015-07-22 21:25:44.928025004 +0200 +++ /work/SRC/openSUSE:13.1:Update/.samba.3926.new/samba.changes 2015-07-28 10:41:29.000000000 +0200 @@ -0,0 +1,9996 @@ +------------------------------------------------------------------- +Sun Jul 5 10:54:29 UTC 2015 - [email protected] + +- Disable rpath usage; (bnc#902421). + +------------------------------------------------------------------- +Fri Jul 3 15:06:57 UTC 2015 - [email protected] + +- Make the winbind package depend on the matching libwbclient version and + vice versa; (bnc#936909). + +------------------------------------------------------------------- +Wed Jun 24 07:01:11 UTC 2015 - [email protected] + +- Update to 4.1.19. + + s4:lib/tls: Fix build with gnutls 3.4; (bso#8780). + + s4.2/fsmo.py: Fix fsmo transfer exception; (bso#10924). + + s3: smbcacls: Ensure we read a hex number as %x, not %u; (bso#11068). + + s3:winbindd: Make sure we remove pending io requests before closing client + sockets; (bso#11141); (bnc#931854). + + Fix panic triggered by smbd_smb2_request_notify_done() -> + smbXsrv_session_find_channel() in smbd; (bso#11182). + + Error code path doesn't call END_PROFILE; (bso#11244). + + Make mangled names work with acl_xattr; (bso#11249). + + libads: Record service ticket endtime for sealed ldap connections; + (bso#11267). + + s3:smb2: Add padding to last command in compound requests; (bso#11277). + + s3: IPv6 enabled DNS connections for ADS client; (bso#11283). + + s4: libcli/finddcs_cldap: Continue processing CLDAP until all addresses + are used; (bso#11284). + + Excessive cli_resolve_path() usage can slow down transmission; (bso#11295). + + idmap_rfc2307: Fix 'wbinfo --gid-to-sid' query; (bso#11313). + +------------------------------------------------------------------- +Fri May 22 09:49:01 UTC 2015 - [email protected] + +- Avoid a crash inside the tevent epoll backend; (bso#11141); (bnc#931854). + +------------------------------------------------------------------- +Wed May 13 16:10:00 UTC 2015 - [email protected] + +- Remove the independently built libraries ldb, talloc, tdn, and tevent and + the post-10.3 renamed libsmbclient from baselibs.conf. + +------------------------------------------------------------------- +Tue May 12 19:55:57 UTC 2015 - [email protected] + +- Update to 4.1.18. + + s3:winbind:grent: Don't stop group enumeration when a group has no gid; + (bso#8905). + + s3:smb2_server: protect against integer wrap with + "smb2 max credits = 65535"; (bso#9702). + + Fix NTLM authentication; (bso#10016). + + vfs: Add glusterfs manpage; (bso#10240). + + printing/cups: Pack requested-attributes with IPP_TAG_KEYWORD; (bso#10808); + (bnc#910378). + + s3: client - "client use spnego principal = yes" code checks wrong name; + (bso#10888). + + spoolss: Clear PrinterInfo on GetPrinter error; (bso#10984). + + s3-util: Fix authentication with long hostnames; (bso#11008). + + smbd can't find the GUID for a printer in the registry and fails to + publish printers; (bso#11018). + + s3-libads: Fix a possible segfault in kerberos_fetch_pac(); (bso#11037). + + smbd: Fix CID 1063259 Uninitialized scalar variable; (bso#11041). + + net: Fix 'net sam addgroupmem'; (bso#11051). + + cli_connect_nb_send: don't segfault on host == NULL; (bso#11058). + + utils: Fix 'net time' segfault; (bso#11058). + + libsmb: Provide authinfo domain for encrypted session referrals; + (bso#11059). + + s3-pam_smbpass: Fix memory leak in pam_sm_authenticate(); (bso#11066). + + vfs_glusterfs: Add comments to the pipe(2) code; (bso#11069). + + s3: lib: libsmbclient: If reusing a server struct, check every cli->timout + miliseconds if it's still valid before use; (bso#11079). + + s3: smbclient: Allinfo leaves the file handle open; (bso#11094). + + debug: Set close-on-exec for the main log file FD; (bso#11100). + + smbd: Stop using vfs_Chdir after SMB_VFS_DISCONNECT; (bso#11115). + + vfs_glusterfs manpage corrections; (bso#11117). + + doc-xml: Add 'sharesec' reference to 'access based share enum'; + (bso#11127). + + s3-winbind: Fix chached user group lookup of trusted domains; (bso#11143). + + Fix memory leak in SMB2 notify handling; (bso#11144). + + Fix memory leak in SMB2 notify handling; (bso#11144). + + s4:auth/gensec_gssapi: let gensec_gssapi_update() return + NT_STATUS_LOGON_FAILURE for unknown errors; (bso#11164). + + docs/idmap_rid: Remove deprecated base_rid from example; (bso#11169); + (bnc#913304). + + s3: libcli: smb1: Ensure we correctly finish a tevent req if the writev + fails in the SMB1 case; (bso#11173). + + s3: libsmbclient: Add missing talloc stackframe; (bso#11177). + + s4-process_model: Do not close random fds while forking; (bso#11180). + + s3-passdb: Fix 'force user' with winbind default domain; (bso#11185). + + s3: libsmbclient: After getting attribute server, ensure main srv pointer + is still valid; (bso#11186). + + s3: Mac OS X 10.10.x fails validate negotiate request to 4.1.x; + (bso#11187). + + spoolss: Purge the printer name cache on name change; (bso#11210); + (bnc#901813). + + s3:smbd: Missing tevent_req_nterror; (bso#11224). + + s4:rpc_server: Add multiplex state to dcerpc flags and control over + multiplex PFC flag in bind_ack and and dcesrv_alter replies; (bso#11225). + + Fix terminate connection behavior for asynchronous endpoint with PUSH + notification flavors; (bso#11226). + + Fix crash in 'net ads dns gethostbyname' with an error in TALLOC_FREE if + you enter invalid values; (bso#11234). + + s4: rpc: Refactor dcesrv_alter() function into setup and send steps; + (bso#11236). + + s3: smbd: Incorrect file size returned in the response of + "FILE_SUPERSEDE Create"; (bso#11240). + + vfs: kernel_flock and named streams; (bso#11243). + + s3: nmbd: Don't set work_changed = True inside update_server_ttl(); + (bso#11254). + +------------------------------------------------------------------- +Wed May 6 17:09:36 UTC 2015 - [email protected] + +- Drop redundant doc attribute from man pages. + +------------------------------------------------------------------- +Fri May 1 11:40:27 UTC 2015 - [email protected] + +- Take resource group sids into account when caching netsamlogon + data; (bnc#912457). + +------------------------------------------------------------------- +Thu Apr 16 10:20:52 UTC 2015 - [email protected] + +- Prevent samba package updates from disabling samba kerberos printing. + +------------------------------------------------------------------- +Tue Mar 31 23:21:12 UTC 2015 - [email protected] + +- Purge printer name cache on spoolss SetPrinter change; (bso#11210); + (bnc#901813). + +------------------------------------------------------------------- +Fri Mar 20 13:21:43 UTC 2015 - [email protected] + +- Correctly retain errno from Btrfs snapshot ioctls; (bnc#923374). + +------------------------------------------------------------------- +Tue Feb 24 16:23:16 UTC 2015 - [email protected] + +- Fix tdb_store_flag_to_ntdb() gcc5 build failure. + +------------------------------------------------------------------- +Thu Feb 12 13:25:42 UTC 2015 - [email protected] + +- Update to 4.1.17. + + Ensure we don't call talloc_free on an uninitialized pointer; + CVE-2015-0240; (bso#11077); (bnc#917376). + +------------------------------------------------------------------- +Thu Jan 22 14:03:52 UTC 2015 - [email protected] + +- Fix vfs_snapper DBus string handling; (bso#11055); (bnc#913238). + +------------------------------------------------------------------- +Thu Jan 22 12:40:18 UTC 2015 - [email protected] + +- Update to 4.1.16. + + dsdb-samldb: Check for extended access rights before we allow changes to + userAccountControl; (bso#10993); CVE-2014-8143; (boo#914279). + +------------------------------------------------------------------- +Mon Jan 19 17:15:19 UTC 2015 - [email protected] + +- Fix libsmbclient DFS referral handling. + + Reuse connections derived from DFS referrals; (bso#10123); (fate#316512). + + Set domain/workgroup based on authentication callback value; (bso#11059). + +------------------------------------------------------------------- +Tue Jan 13 13:28:31 UTC 2015 - [email protected] + +- Enable avahi support on post-12.2 systems. + +------------------------------------------------------------------- +Tue Jan 13 13:01:11 UTC 2015 - [email protected] + +- Update to 4.1.15. + + pam_winbind: Fix warn_pwd_expire implementation; (bso#9056). + + nsswitch: Fix soname of linux nss_*.so.2 modules; (bso#9299). + + Fix profiles tool; (bso#9629). + + s3-lib: Do not require a password with --use-ccache; (bso#10279). + + s4:dsdb/rootdse: Expand extended dn values with the AS_SYSTEM control; + (bso#10949). + + s4-rpc: dnsserver: Fix enumeration of IPv4 and IPv6 addresses; (bso#10952). + + s3:smb2_server: Allow reauthentication without signing; (bso#10958). + + s3-smbclient: Return success if we listed the shares; (bso#10960). + + s3-smbstatus: Fix exit code of profile output; (bso#10961). + + libcli: SMB2: Pure SMB2-only negprot fix to make us behave as a Windows + client does; (bso#10966). + + s3: smbd/modules: Fix *allocate* calls to follow POSIX error return + convention; (bso#10982). + + Fix 'domain join' by adding 'drsuapi.DsBindInfoFallBack' attribute + 'supported_extensions'; (bso#11006). + + idl:drsuapi: Manage all possible lengths of drsuapi_DsBindInfo; + (bso#11006). ++++ 9799 more lines (skipped) ++++ between /dev/null ++++ and /work/SRC/openSUSE:13.1:Update/.samba.3926.new/samba.changes New: ---- baselibs.conf patches.tar.bz2 samba-4.1.19.tar.asc samba-4.1.19.tar.gz samba-client-rpmlintrc samba.changes samba.keyring samba.spec vendor-files.tar.bz2 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ samba.spec ++++++ ++++ 2457 lines (skipped) ++++++ baselibs.conf ++++++ libdcerpc0 libdcerpc-atsvc0 libdcerpc-binding0 libdcerpc-samr0 libgensec0 libndr0 libndr-krb5pac0 libndr-nbt0 libndr-standard0 libnetapi0 libpdb0 libregistry0 libsamba-credentials0 libsamba-hostconfig0 libsamba-policy0 libsamba-util0 libsamdb0 libsmbclient0 libsmbclient-raw0 libsmbconf0 libsmbldap0 libtevent-util0 libwbclient0 samba supplements "packageand(samba:pam-<targettype>)" -/usr/lib/samba samba-winbind supplements "packageand(samba-winbind:pam-<targettype>)" supplements "packageand(samba-winbind:glibc-<targettype>)" -/usr/lib/samba samba-client supplements "packageand(samba-client:glibc-<targettype>)" -/usr/lib/samba samba-libs ++++++ samba-client-rpmlintrc ++++++ addFilter("shlib-policy-name-error") ++++++ samba.keyring ++++++ pub 1024D/6568B7EA 2007-02-04 [expires: 2016-01-17] uid Samba Distribution Verification Key <[email protected]> sub 2048g/DA6DFB44 2007-02-04 [expires: 2016-01-17] -----BEGIN PGP PUBLIC KEY BLOCK----- Version: GnuPG v1.4.11 (GNU/Linux) mQGiBEXGOUcRBACooMht/2pmNT3bKZn1WEFQa+sXe6nxi3G6lH5bIBUKp85SDM57 4qTcBIJXhwfGABeSvyUdZJbBxJDD5bNiO4k+Y5j3t8t9hb2FKgJ1bXL2aO5BbFnJ UlkWw8UnHE3A3mmq2hYjfu+0J7mdMxyH5kajbtGfgt0rbPn/K00AgoBCqwCgyNR7 1kaKzs1os6BiBhu0sTxTkN8EAJC1u1+z9mput/IWo9bQ85KRPfTXXRxv07jK++Yf tPGMerJFxdpdVI+O+LQB9J7L6WUHF8TzmMEGHHStjnKiZB3PCDcAYpR8pVB3085f fEpF32ic7mQzK+K+P0KARadywX1JLYSYP2YQ1BeYteC7hUtp/U0i0c12JDG4Bmil JMZABACis5ms470DH3OwU7b32lDDLFWlwGEQX+OKQealhYgz3hdIzO+cm6Gz0/z1 YGl8oV0dc1tG2EfsndDx7QRwrBoxahfsgClN4K8HLtbBy1Ox9kZn+hr1yNEaPdko +W5bC96Wo2RqnSP09qJ5/tp6rXXCLIgF/+PeCJtP31MaMP0Jo7Q6U2FtYmEgRGlz dHJpYnV0aW9uIFZlcmlmaWNhdGlvbiBLZXkgPHNhbWJhLWJ1Z3NAc2FtYmEub3Jn PohmBBMRAgAmAhsDBgsJCAcDAgQVAggDBBYCAwECHgECF4AFAk9Ki3oFCQ1GuTMA CgkQbzORW2Vot+oKMQCgxTZ6Gvo6cJsVdVLzUiJPcHD9tW4AnjiOTF6F0G60oPK0 IxKOjGvVQ+4riEYEEBECAAYFAkXGOXUACgkQXNXaBxV7yV6oTwCgnSEFCs2pAwW5 LU22AfVDwh9e5AkAn2k0dRoGj2UL/Js4qvf3sBqEw4rriEYEEBECAAYFAkXGOcYA CgkQIR7qMdg1EfZyDACgyvRXAmV0XUhH1vbNMEG9+sFXaCwAoOQTsk19i3Luy3Pw +1gDaUeCzeLdiEYEEBECAAYFAkXIMMUACgkQ3L4Y/6A1U7wMMACgg4+AVtovhtY6 y1qip9uZ8qwbnkkAni269FhHSPKfGGEnfkrN/Q2/3EY7iEYEEBECAAYFAkYNcugA CgkQp6cLM3ld2XFzGwCffyD/eMhEKCN6j5FCSbb3rhkyR/kAn0PlFtYrTNkrc1dO ezhvaZZCPBHWiEYEEBECAAYFAkZQmboACgkQVVCoNUmKuAcl1wCdEzFgS3DIgIhY y6Id5a9EqUjArLkAnArdjXskM952gLuyJjgictCiHdIeiEYEEBECAAYFAkZdvkMA CgkQw1Ohknblb7ZN8gCgjD/SWG0qBCBD7w19I5kVTijU9j4AmwbPf4wU7hY942tn 1NxUyKwF+edxiEYEEBECAAYFAkXIC4MACgkQi9gubzC5S1zMJgCgqQOcgVsXQ7IT BsUTEFPiGPwUis8An1sb+UQfnsoRVoiwxiczw55ACi1BiEYEEBECAAYFAkku3m0A CgkQSOk3aI7hFogLEgCeKMOoyGUtcp5FqhmspG2VwkKBuQkAnRloBsefS7AdUfiF b+R878ikkKbliEYEEBECAAYFAkoebcIACgkQXox4WnRne2nv5gCdEiyazjMYBfqr 9a0pJQDN/iCIxacAoJOyzJp+JuItm7lmKZcRYmcPZqmsiEYEEBECAAYFAkoebdoA CgkQFJEptQgNy8JooQCgmdL/Gea2PmDrU2ZvopA3aYp+uUYAn1plmv07PAuVjieN MiUdhCpUU21KiF4EEBEIAAYFAlI1FtQACgkQEXiFBUEonDt+tgD/Zho5K93GblMx Jz+0SQV/xqOAq3eC3RZ9XrxsBsyTaE4A/2B8LbPeW1dg2Kn3mOwQeD8WJm7Yakt1 k6AZTcStB2TKiGYEExECACYCGwMGCwkIBwMCBBUCCAMEFgIDAQIeAQIXgAUCR81n qQUJA+hh4gAKCRBvM5FbZWi36vi9AJ4mVG9nQnBvew0UM4d+/wi+9Lb31ACfSriq m7CdG27eSY4+631lFdRV9meIZgQTEQIAJgIbAwYLCQgHAwIEFQIIAwQWAgMBAh4B AheABQJJtjjzBQkHsmasAAoJEG8zkVtlaLfqxAQAoI0BuXAfJd6e36a/2rt4zVFO 3EmeAKCrWxRIFlIWArnqOfG2peNa9+tnQohmBBMRAgAmAhsDBgsJCAcDAgQVAggD BBYCAwECHgECF4AFAk1jjnEFCQl+iKoACgkQbzORW2Vot+o+KQCgkMVKNdbKjF9s F7k97c0qd/xMyy8AnR6EnNmLXPZNxQlcp9ZWYcPl+IUiiGYEExECACYCGwMGCwkI BwMCBBUCCAMEFgIDAQIeAQIXgAUCUtjwHQUJENUd0gAKCRBvM5FbZWi36rskAJ46 KBD19wYQIVj/7wV/ztpr80cbCgCgqAmyho6JTtwE696dgGKjobV8wJ+IZgQTEQIA JgUCRcY5RwIbAwUJAeEzgAYLCQgHAwIEFQIIAwQWAgMBAh4BAheAAAoJEG8zkVtl aLfqFfkAn1T7m5GZcOgn7+vv4pWL1iRgVfH8AJ9UZyFrbR5MuvzGY3XNNC0YM6Nq ebkCDQRFxjlhEAgAyDleE6VRurQ11O2A9VYyd/cXbqJolk4PeHSDg4NW2Ry78FGu SNV+87I2JoIWeUGulsTZJ20csFp2j9DzjF0jLKVVp6gUE2ZJ8XQKTGzEBJKNKTyU i8HUw9/tMuYbeHnX9PGrFnUgU+cr7uTmpODv0mtz+ZTSHvEN0o36kWIkl9drloKn oftibEAudC6/a58/QDIyqmRMdr+1ypwpMaGhctV8DqT4ybSLjxWkiOTrpzbLoV2H hkL+zKqgNkTbrpaJ6B4JfSemM0QY3ZgwdvC5viSl8iaZxw61JCunOdOBLsVV10Cj ryzT8KHd1PPTgmd4BWVP83hEkHaVsVzIkL1KjwAECwgAp259HGGl4Zd1J50IMj2F VCVddv7AI4ZYAEKtPEj4EyaeBhPycfQtijEu3ZVmB+LYw0m3jvkSy3dup6XYYsvA p/VL7Cbw7O9f/uUtj06Vdenh+UM0GZLyfz15JEV0NSJaL5L7eayonhwseJ+kGW+b XfQLgHkWae+VFxETu6Vyhv+e6P0s7MKw/7UhCkaQSkBA+Hh7D6IS8N3TCg1huoS0 X+BkfL/sSixYr6l697bRC2/cUu2cmas+hUhbnEAKel2P8Y50dwhc3yqvaRzuD8L4 VOd7kHiPbLgB0j3nMX1CHEH6wmjeiupLRDGPisXkyVIKgexZ7JKspwqH9DDdjgON PohPBBgRAgAPAhsMBQJPSovmBQkNRrmFAAoJEG8zkVtlaLfqaCQAnjMe3EosdMt8 yIE7wCLctOrYZTjFAJ9YWXXjLQJFo2in7vC1pP7pgXrTyIhPBBgRAgAPAhsMBQJS 2PADBQkQ1R2SAAoJEG8zkVtlaLfqWU0AniUMsF8RV9nmW1GHMHS8wqZrPHDbAJ9A 9GHh4cjTsKMmRsY6FDkDm8mExQ== =nU8K -----END PGP PUBLIC KEY BLOCK-----
