Here's a security update to the latest samba version for both -stable
and -current.

Release notes for samba-4.9.14:

  https://www.samba.org/samba/history/samba-4.9.14.html

samba-4.9.15:

  https://www.samba.org/samba/history/samba-4.9.15.html

o CVE-2019-10218: Client code can return filenames containing path
  separators.
o CVE-2019-14833: Samba AD DC check password script does not receive the
  full password.
o CVE-2019-14847: User with "get changes" permission can crash AD DC
  LDAP server via dirsync.

I intend to commit this to -current tomorrow, -stable will follow.
Test reports welcome.



Index: Makefile
===================================================================
RCS file: /cvs/ports/net/samba/Makefile,v
retrieving revision 1.277
diff -u -p -r1.277 Makefile
--- Makefile    7 Oct 2019 13:35:48 -0000       1.277
+++ Makefile    29 Oct 2019 22:24:55 -0000
@@ -1,6 +1,6 @@
 # $OpenBSD: Makefile,v 1.277 2019/10/07 13:35:48 jca Exp $
 
-VERSION =              4.9.13
+VERSION =              4.9.15
 DISTNAME =             samba-${VERSION}
 
 COMMENT-main =         SMB and CIFS client and server for UNIX
@@ -17,9 +17,11 @@ PKGNAME-docs =               samba-docs-${VERSION}
 
 PKG_ARCH-docs =                *
 
-LDB_V =                        1.4.7
+LDB_V =                        1.4.8
 TEVENT_V =             0.9.37
 
+REVISION-tevent =      0
+
 SHARED_LIBS =          asn1-samba4             0.0 \
                        com_err-samba4          0.0 \
                        dcerpc                  0.0 \
@@ -34,7 +36,7 @@ SHARED_LIBS =         asn1-samba4             0.0 \
                        hx509-samba4            0.0 \
                        kdc-samba4              0.0 \
                        krb5-samba4             0.1 \
-                       ldb                     0.8 \
+                       ldb                     0.9 \
                        ndr                     0.3 \
                        ndr-krb5pac             0.1 \
                        ndr-nbt                 0.1 \
Index: distinfo
===================================================================
RCS file: /cvs/ports/net/samba/distinfo,v
retrieving revision 1.77
diff -u -p -r1.77 distinfo
--- distinfo    7 Oct 2019 12:50:13 -0000       1.77
+++ distinfo    29 Oct 2019 22:24:55 -0000
@@ -1,2 +1,2 @@
-SHA256 (samba-4.9.13.tar.gz) = qxgzHjd2axPbsH0fEVvaPXlJF7r1AtDKKyuP/wFLiPI=
-SIZE (samba-4.9.13.tar.gz) = 18109481
+SHA256 (samba-4.9.15.tar.gz) = N3ECuAuXlBvw0TG4KMroQVGQ5b3SkowuLJVOKfGQRJY=
+SIZE (samba-4.9.15.tar.gz) = 18110369
Index: pkg/PLIST-main
===================================================================
RCS file: /cvs/ports/net/samba/pkg/PLIST-main,v
retrieving revision 1.50
diff -u -p -r1.50 PLIST-main
--- pkg/PLIST-main      7 Oct 2019 12:50:14 -0000       1.50
+++ pkg/PLIST-main      29 Oct 2019 22:24:55 -0000
@@ -535,6 +535,9 @@ lib/python${MODPY_VERSION}/site-packages
 
lib/python${MODPY_VERSION}/site-packages/samba/tests/blackbox/traffic_summary.py
 
lib/python${MODPY_VERSION}/site-packages/samba/tests/blackbox/traffic_summary.pyc
 
lib/python${MODPY_VERSION}/site-packages/samba/tests/blackbox/traffic_summary.${MODPY_PYOEXTENSION}
+lib/python${MODPY_VERSION}/site-packages/samba/tests/blackbox/undoguididx.py
+lib/python${MODPY_VERSION}/site-packages/samba/tests/blackbox/undoguididx.pyc
+lib/python${MODPY_VERSION}/site-packages/samba/tests/blackbox/undoguididx.${MODPY_PYOEXTENSION}
 lib/python${MODPY_VERSION}/site-packages/samba/tests/common.py
 lib/python${MODPY_VERSION}/site-packages/samba/tests/common.pyc
 
lib/python${MODPY_VERSION}/site-packages/samba/tests/common.${MODPY_PYOEXTENSION}


-- 
jca | PGP : 0x1524E7EE / 5135 92C1 AD36 5293 2BDF  DDCC 0DFA 74AE 1524 E7EE

Reply via email to