Here's a security update to the latest samba version for both -stable and -current.
Release notes for samba-4.9.14: https://www.samba.org/samba/history/samba-4.9.14.html samba-4.9.15: https://www.samba.org/samba/history/samba-4.9.15.html o CVE-2019-10218: Client code can return filenames containing path separators. o CVE-2019-14833: Samba AD DC check password script does not receive the full password. o CVE-2019-14847: User with "get changes" permission can crash AD DC LDAP server via dirsync. I intend to commit this to -current tomorrow, -stable will follow. Test reports welcome. Index: Makefile =================================================================== RCS file: /cvs/ports/net/samba/Makefile,v retrieving revision 1.277 diff -u -p -r1.277 Makefile --- Makefile 7 Oct 2019 13:35:48 -0000 1.277 +++ Makefile 29 Oct 2019 22:24:55 -0000 @@ -1,6 +1,6 @@ # $OpenBSD: Makefile,v 1.277 2019/10/07 13:35:48 jca Exp $ -VERSION = 4.9.13 +VERSION = 4.9.15 DISTNAME = samba-${VERSION} COMMENT-main = SMB and CIFS client and server for UNIX @@ -17,9 +17,11 @@ PKGNAME-docs = samba-docs-${VERSION} PKG_ARCH-docs = * -LDB_V = 1.4.7 +LDB_V = 1.4.8 TEVENT_V = 0.9.37 +REVISION-tevent = 0 + SHARED_LIBS = asn1-samba4 0.0 \ com_err-samba4 0.0 \ dcerpc 0.0 \ @@ -34,7 +36,7 @@ SHARED_LIBS = asn1-samba4 0.0 \ hx509-samba4 0.0 \ kdc-samba4 0.0 \ krb5-samba4 0.1 \ - ldb 0.8 \ + ldb 0.9 \ ndr 0.3 \ ndr-krb5pac 0.1 \ ndr-nbt 0.1 \ Index: distinfo =================================================================== RCS file: /cvs/ports/net/samba/distinfo,v retrieving revision 1.77 diff -u -p -r1.77 distinfo --- distinfo 7 Oct 2019 12:50:13 -0000 1.77 +++ distinfo 29 Oct 2019 22:24:55 -0000 @@ -1,2 +1,2 @@ -SHA256 (samba-4.9.13.tar.gz) = qxgzHjd2axPbsH0fEVvaPXlJF7r1AtDKKyuP/wFLiPI= -SIZE (samba-4.9.13.tar.gz) = 18109481 +SHA256 (samba-4.9.15.tar.gz) = N3ECuAuXlBvw0TG4KMroQVGQ5b3SkowuLJVOKfGQRJY= +SIZE (samba-4.9.15.tar.gz) = 18110369 Index: pkg/PLIST-main =================================================================== RCS file: /cvs/ports/net/samba/pkg/PLIST-main,v retrieving revision 1.50 diff -u -p -r1.50 PLIST-main --- pkg/PLIST-main 7 Oct 2019 12:50:14 -0000 1.50 +++ pkg/PLIST-main 29 Oct 2019 22:24:55 -0000 @@ -535,6 +535,9 @@ lib/python${MODPY_VERSION}/site-packages lib/python${MODPY_VERSION}/site-packages/samba/tests/blackbox/traffic_summary.py lib/python${MODPY_VERSION}/site-packages/samba/tests/blackbox/traffic_summary.pyc lib/python${MODPY_VERSION}/site-packages/samba/tests/blackbox/traffic_summary.${MODPY_PYOEXTENSION} +lib/python${MODPY_VERSION}/site-packages/samba/tests/blackbox/undoguididx.py +lib/python${MODPY_VERSION}/site-packages/samba/tests/blackbox/undoguididx.pyc +lib/python${MODPY_VERSION}/site-packages/samba/tests/blackbox/undoguididx.${MODPY_PYOEXTENSION} lib/python${MODPY_VERSION}/site-packages/samba/tests/common.py lib/python${MODPY_VERSION}/site-packages/samba/tests/common.pyc lib/python${MODPY_VERSION}/site-packages/samba/tests/common.${MODPY_PYOEXTENSION} -- jca | PGP : 0x1524E7EE / 5135 92C1 AD36 5293 2BDF DDCC 0DFA 74AE 1524 E7EE
