Bug#1108904: marked as done (samba: Windows security hardening locks out schannel'ed netlogon dc calls like netr_DsRGetDCName)

Mon, 07 Jul 2025 14:33:19 -0700 

Your message dated Mon, 07 Jul 2025 21:30:28 +0000
with message-id <[email protected]>
and subject line Bug#1108904: fixed in samba 2:4.22.3+dfsg-1
has caused the Debian Bug report #1108904,
regarding samba: Windows security hardening locks out schannel'ed netlogon dc 
calls like netr_DsRGetDCName
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
1108904: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108904
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message --- 
Source: samba
Version: 2:4.22.2+dfsg-1
Severity: serious
Tags: upstream
Forwarded: https://bugzilla.samba.org/show_bug.cgi?id=15876 
https://gitlab.com/samba-team/samba/-/merge_requests/4086
X-Debbugs-Cc: [email protected]

Hi Michael,

Yesterday the following heads up was posted to the Samba announce
list:
https://lists.samba.org/archive/samba-announce/2025/000693.html
https://bugzilla.samba.org/show_bug.cgi?id=15876
https://gitlab.com/samba-team/samba/-/merge_requests/4086

To be on the safe side I make this RC level, since my understanding is
that samba servers acting s AD members in such environments will stop
working properly if tomorrows Windows updates are deployed, is this
correct?

The upstream bug contains references to the two upstream changes.

Regards,
Salvatore

--- End Message ---
--- Begin Message --- 
Source: samba
Source-Version: 2:4.22.3+dfsg-1
Done: Michael Tokarev <[email protected]>

We believe that the bug you reported is fixed in the latest version of
samba, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Michael Tokarev <[email protected]> (supplier of updated samba package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 07 Jul 2025 23:16:23 +0300
Source: samba
Architecture: source
Version: 2:4.22.3+dfsg-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Samba Maintainers <[email protected]>
Changed-By: Michael Tokarev <[email protected]>
Closes: 1108904
Changes:
 samba (2:4.22.3+dfsg-1) unstable; urgency=medium
 .
   * new upstream stable/bugfix release, mostly targetting the Jul-08 update
     for Active Directory Domain Controllers
     (https://bugzilla.samba.org/show_bug.cgi?id=15876, Closes: #1108904):
    - https://bugzilla.samba.org/show_bug.cgi?id=15854:
      samba-tool cannot add user to group whose name
      is exactly 16 characters long
    - https://bugzilla.samba.org/show_bug.cgi?id=15869:
      Startup messages of rpc daemons fills /var/log/messages
    - https://bugzilla.samba.org/show_bug.cgi?id=15876:
      Windows security hardening locks out schannel'ed netlogon
      dc calls like netr_DsRGetDCName
   * update d/copyright to point to https://www.gnu.org/licenses/
     instead of FSF postal address
Checksums-Sha1:
 524a7d138340effa3b431aead731f51b9bbef284 5626 samba_4.22.3+dfsg-1.dsc
 cdcb3761d0b3f67c72117d4eb2a106dbfede849b 25672304 samba_4.22.3+dfsg.orig.tar.xz
 1347e0ac1061ec5fe617bf6a66c815d4c94e7b8c 187460 
samba_4.22.3+dfsg-1.debian.tar.xz
 588643afb2a36a3db1b93e90fcd075ba7a63e86b 5493 
samba_4.22.3+dfsg-1_source.buildinfo
Checksums-Sha256:
 174ba8392ead0a53e9689c153e25ed18b37806fd7240372cef7f250af487664d 5626 
samba_4.22.3+dfsg-1.dsc
 1f6ee82ed47c0c6d03e68c96a47b7cef56413a2fda57fd7aa9a1cc57df6b2ccc 25672304 
samba_4.22.3+dfsg.orig.tar.xz
 a7d5118283c69db8da56d0a84574d402a30600516ceeed453613c6c33bb3e176 187460 
samba_4.22.3+dfsg-1.debian.tar.xz
 cf8cf7b2a97aad3adfd32455f9510003d805b693aacd7ed8e5af62e5149e9b18 5493 
samba_4.22.3+dfsg-1_source.buildinfo
Files:
 1d44172f78f2ab20af205b1c953b29f6 5626 net optional samba_4.22.3+dfsg-1.dsc
 fa1acde952957a73a68ba792b5cfffac 25672304 net optional 
samba_4.22.3+dfsg.orig.tar.xz
 08fe96c3e0756c2d207befd1c48f83f5 187460 net optional 
samba_4.22.3+dfsg-1.debian.tar.xz
 9a6b3433c32821ac0e83d2921ce77670 5493 net optional 
samba_4.22.3+dfsg-1_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=YJXG
-----END PGP SIGNATURE-----

Attachment: pgp2UFlwaGr2y.pgp
Description: PGP signature


--- End Message ---

Reply via email to