CVSROOT: /cvs
Module name: ports
Changes by: [email protected] 2016/04/17 11:08:29
Modified files:
net/samba : Tag: OPENBSD_5_9 Makefile distinfo
net/samba/patches: Tag: OPENBSD_5_9
patch-buildtools_wafsamba_samba_autoconf_py
patch-buildtools_wafsamba_samba_conftests_py
patch-buildtools_wafsamba_samba_install_py
patch-buildtools_wafsamba_wafsamba_py
patch-lib_ldb_wscript
patch-lib_replace_wscript
patch-python_samba_provision___init___py
patch-source3_wscript
patch-source4_scripting_bin_samba_upgradedns
net/samba/pkg : Tag: OPENBSD_5_9 DESCR-util PLIST-docs
PLIST-ldb PLIST-main PLIST-util samba_ad_dc.rc
Removed files:
net/samba/patches: Tag: OPENBSD_5_9
patch-buildtools_wafadmin_Tools_ccroot_py
patch-buildtools_wafadmin_Tools_gcc_py
patch-buildtools_wafadmin_Tools_gxx_py
patch-buildtools_wafsamba_samba_bundled_py
patch-lib_ntdb_wscript
patch-lib_replace_replace_h
patch-lib_testtools_testtools_tests_test_compat_py
patch-source3_lib_sysquotas_nfs_c
patch-source3_utils_status_c patch-wscript
Log message:
Backport SECURITY update to samba-4.3.8
ok sthen@
Fixes for:
CVE-2015-7560 (Incorrect ACL get/set allowed on symlink path)
CVE-2016-0771 (Out-of-bounds read in internal DNS server)
CVE-2015-5370 (Multiple errors in DCE-RPC code)
CVE-2016-2110 (Man in the middle attacks possible with NTLMSSP)
CVE-2016-2111 (NETLOGON Spoofing Vulnerability)
CVE-2016-2112 (LDAP client and server don't enforce integrity)
CVE-2016-2113 (Missing TLS certificate validation)
CVE-2016-2114 ("server signing = mandatory" not enforced)
CVE-2016-2115 (SMB IPC traffic is not integrity protected)
CVE-2016-2118 (SAMR and LSA man in the middle attacks possible)
CVE-2016-2118 is http://badlock.org/
