[oe] [meta-networking][hardknott][PATCH 16/19] samba: upgrade 4.14.8 -> 4.14.10

Mon, 27 Dec 2021 23:38:45 -0800 

This is a security release in order to address the following defects:

CVE-2016-2124:  SMB1 client connections can be downgraded to plaintext
                authentication.
                https://www.samba.org/samba/security/CVE-2016-2124.html

CVE-2020-25717: A user on the domain can become root on domain members.
                https://www.samba.org/samba/security/CVE-2020-25717.html

CVE-2020-25718: Samba AD DC did not correctly sandbox Kerberos tickets
                issued by an RODC.
                https://www.samba.org/samba/security/CVE-2020-25718.html

CVE-2020-25719: Samba AD DC did not always rely on the SID and PAC in
                Kerberos tickets.
                https://www.samba.org/samba/security/CVE-2020-25719.html

CVE-2020-25721: Kerberos acceptors need easy access to stable AD
                identifiers (eg objectSid).
                https://www.samba.org/samba/security/CVE-2020-25721.html

CVE-2020-25722: Samba AD DC did not do suffienct access and conformance
                checking of data stored.
                https://www.samba.org/samba/security/CVE-2020-25722.html

CVE-2021-3738:  Use after free in Samba AD DC RPC server.
                https://www.samba.org/samba/security/CVE-2021-3738.html

CVE-2021-23192: Subsequent DCE/RPC fragment injection vulnerability.
                https://www.samba.org/samba/security/CVE-2021-23192.html

See: https://www.samba.org/samba/history/samba-4.14.10.html

Signed-off-by: Yi Zhao <[email protected]>
Signed-off-by: Khem Raj <[email protected]>
Signed-off-by: Yi Zhao <[email protected]>
---
 .../samba/{samba_4.14.8.bb => samba_4.14.10.bb}               | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)
 rename meta-networking/recipes-connectivity/samba/{samba_4.14.8.bb => 
samba_4.14.10.bb} (99%)

diff --git a/meta-networking/recipes-connectivity/samba/samba_4.14.8.bb 
b/meta-networking/recipes-connectivity/samba/samba_4.14.10.bb
similarity index 99%
rename from meta-networking/recipes-connectivity/samba/samba_4.14.8.bb
rename to meta-networking/recipes-connectivity/samba/samba_4.14.10.bb
index 1c599ac0e..6b69c925e 100644
--- a/meta-networking/recipes-connectivity/samba/samba_4.14.8.bb
+++ b/meta-networking/recipes-connectivity/samba/samba_4.14.10.bb
@@ -34,8 +34,8 @@ SRC_URI_append_libc-musl = " \
            file://samba-fix-musl-lib-without-innetgr.patch \
            "
 
-SRC_URI[md5sum] = "5c6636b34a322de0eb917ee0403be322"
-SRC_URI[sha256sum] = 
"c936b782c2aced8cd7299c13bec67c495fd4affdb217a6ed6150f4fd6d770fde"
+SRC_URI[md5sum] = "02a3ae53a9c3feb2f3c5b97141b7a8cc"
+SRC_URI[sha256sum] = 
"107ee862f58062682cec362ec68a24251292805f89aa4c97e7ab80237f91c7af"
 
 UPSTREAM_CHECK_REGEX = "samba\-(?P<pver>4\.14(\.\d+)+).tar.gz"
 
-- 
2.25.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#94542): 
https://lists.openembedded.org/g/openembedded-devel/message/94542
Mute This Topic: https://lists.openembedded.org/mt/87992372/21656
Group Owner: [email protected]
Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub 
[[email protected]]
-=-=-=-=-=-=-=-=-=-=-=-

Reply via email to