Bug#868209: marked as pending
tag 868209 pending thanks Hello, Bug #868209 reported by you has been fixed in the Git repository. You can see the changelog below, and you can check the diff of the fix at: https://anonscm.debian.org/cgit/pkg-samba/samba.git/commit/?id=c7d56e7 --- commit c7d56e7764c64651542c95037e3c2ac0f86932d0 Author: Mathieu ParentDate: Thu Jul 13 15:01:31 2017 +0200 Release 2:4.2.14+dfsg-0+deb8u7 diff --git a/debian/changelog b/debian/changelog index 4aa3616..973bcda 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,11 @@ +samba (2:4.2.14+dfsg-0+deb8u7) jessie-security; urgency=high + + * This is a security release in order to address the following defect: +- CVE-2017-11103: Orpheus' Lyre KDC-REP service name validation + (Closes: #868209) + + -- Mathieu Parent Thu, 13 Jul 2017 15:00:29 +0200 + samba (2:4.2.14+dfsg-0+deb8u6) jessie-security; urgency=high * Non-maintainer upload by the Security Team.
Processed: Bug#868209 marked as pending
Processing commands for cont...@bugs.debian.org: > tag 868209 pending Bug #868209 [src:samba] CVE-2017-11103: MitM attack, impersonation of the Kerberos client, known as Orpheus Lyre Ignoring request to alter tags of bug #868209 to the same tags previously set > thanks Stopping processing here. Please contact me if you need assistance. -- 868209: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=868209 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
Bug#868209: marked as pending
tag 868209 pending thanks Hello, Bug #868209 reported by you has been fixed in the Git repository. You can see the changelog below, and you can check the diff of the fix at: https://anonscm.debian.org/cgit/pkg-samba/samba.git/commit/?id=feb2524 --- commit feb2524d7fcc307b78d5bed5fc0ef1873a3e7e24 Author: Mathieu ParentDate: Wed Jul 12 23:22:29 2017 +0200 Release 2:4.5.8+dfsg-2+deb9u1 diff --git a/debian/changelog b/debian/changelog index 750f427..53cf863 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,11 @@ +samba (2:4.5.8+dfsg-2+deb9u1) stretch-security; urgency=high + + * This is a security release in order to address the following defect: +- CVE-2017-11103: Orpheus' Lyre KDC-REP service name validation + (Closes: #868209) + + -- Mathieu Parent Thu, 13 Jul 2017 14:43:44 +0200 + samba (2:4.5.8+dfsg-2) unstable; urgency=high * CVE-2017-7494: rpc_server3: Refuse to open pipe names with / inside
Bug#868209: marked as pending
tag 868209 pending thanks Hello, Bug #868209 reported by you has been fixed in the Git repository. You can see the changelog below, and you can check the diff of the fix at: https://anonscm.debian.org/cgit/pkg-samba/samba.git/commit/?id=42c2798 --- commit 42c2798393a2d284ff8a1166aba96f74cd2f56ae Author: Mathieu ParentDate: Wed Jul 12 23:06:53 2017 +0200 Release 2:4.6.5+dfsg-4 diff --git a/debian/changelog b/debian/changelog index 427860b..b36b199 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,14 @@ +samba (2:4.6.5+dfsg-4) unstable; urgency=high + + * This is a security release in order to address the following defects: +- CVE-2017-11103: Orpheus' Lyre KDC-REP service name validation + (Closes: #868209) + * Other fixes: +- Remove empty samba-common.maintscript (leading to empty preinst and + prerm) + + -- Mathieu Parent Thu, 13 Jul 2017 14:38:32 +0200 + samba (2:4.6.5+dfsg-3) unstable; urgency=medium * Remove upstart code
Processed: Bug#868209 marked as pending
Processing commands for cont...@bugs.debian.org: > tag 868209 pending Bug #868209 [src:samba] CVE-2017-11103: MitM attack, impersonation of the Kerberos client, known as Orpheus Lyre Ignoring request to alter tags of bug #868209 to the same tags previously set > thanks Stopping processing here. Please contact me if you need assistance. -- 868209: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=868209 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
Processed: Bug#868209 marked as pending
Processing commands for cont...@bugs.debian.org: > tag 868209 pending Bug #868209 [src:samba] CVE-2017-11103: MitM attack, impersonation of the Kerberos client, known as Orpheus Lyre Added tag(s) pending. > thanks Stopping processing here. Please contact me if you need assistance. -- 868209: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=868209 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems