-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 24 Jun 2020 23:12:11 +0200 Source: samba Architecture: source Version: 2:4.12.3+dfsg-1 Distribution: experimental Urgency: medium Maintainer: Debian Samba Maintainers <pkg-samba-ma...@lists.alioth.debian.org> Changed-By: Mathieu Parent <sath...@debian.org> Closes: 953915 956428 960171 960188 960189 961585 963106 963242 Changes: samba (2:4.12.3+dfsg-1) experimental; urgency=medium . * New upstream major version (Closes: #963106) - Update d/gbp.conf, d/watch and d/README.source for 4.12 - Drop merged patches - Bump build-depends talloc >= 2.3.1, tdb >= 1.4.3, tevent >= 0.10.2 and ldb >= 2.1.3 - Upstream fixes: + pygpo: use correct method flags (Closes: #963242, #961585, #960171, #956428) + CVE-2020-10700: A use-after-free flaw was found in the way samba AD DC LDAP servers, handled 'Paged Results' control is combined with the 'ASQ' control. A malicious user in a samba AD could use this flaw to cause denial of service (Closes: #960189) + CVE-2020-10704: A flaw was found when using samba as an Active Directory Domain Controller. Due to the way samba handles certain requests as an Active Directory Domain Controller LDAP server, an unauthorized user can cause a stack overflow leading to a denial of service. The highest threat from this vulnerability is to system availability (Closes: #960188) - intel aes-ni no more needed as GnuTLS is used - Install new files - Update symbols - Update samba-libs.lintian-overrides * d/control: Remove unused libattr1-dev Build-Depends (Closes: #953915) Checksums-Sha1: d472e8a9ab9fc64767c6b8b1983161b1e8ef9b88 4311 samba_4.12.3+dfsg-1.dsc e6221132f932f96c53cc017ebe51ca932042bbf5 11545756 samba_4.12.3+dfsg.orig.tar.xz 42d29d472677a96c18619791a530e549356797ca 242304 samba_4.12.3+dfsg-1.debian.tar.xz e6fa9401324994ef924eaed1c91da8047f60d09b 6303 samba_4.12.3+dfsg-1_source.buildinfo Checksums-Sha256: 40e8658baa24759d1e4873dba0d814b1ba8a886e12267224412b262660c81f5b 4311 samba_4.12.3+dfsg-1.dsc f2b19e8ec97b95c8f25c67a1e9711b72f6980b7ef0b6b15752374c91e3c0c56c 11545756 samba_4.12.3+dfsg.orig.tar.xz e52b84080114dc1e5c04dbb2883bbbd4c9abf35dbc55f7cb59ec80e98afd24f1 242304 samba_4.12.3+dfsg-1.debian.tar.xz ec5c36f615c26dc091c9868b43a6c4c27edf086eba77ef68b91a50d90cf3239d 6303 samba_4.12.3+dfsg-1_source.buildinfo Files: 8102c440da0534f32b25ec90dc4b51df 4311 net optional samba_4.12.3+dfsg-1.dsc af42eb35d789d04fa466a12212da01cf 11545756 net optional samba_4.12.3+dfsg.orig.tar.xz 3c1060447238428aaf629c079a167aee 242304 net optional samba_4.12.3+dfsg-1.debian.tar.xz faed71b1724cf538ca104221622530f7 6303 net optional samba_4.12.3+dfsg-1_source.buildinfo
-----BEGIN PGP SIGNATURE----- iQJHBAEBCgAxFiEEqqWLhC6ILPQU4Lqxp8cqHHgrjD8FAl7zwf4THHNhdGhpZXVA ZGViaWFuLm9yZwAKCRCnxyoceCuMPxO7EADjHvpU+omc4FYorY6Zc7q0nPxfujC5 dsp27fPaH3l0f/gxiodCIxohvOt+xKtxJXO22ebg9mBgPbjmAlKhZWk/0cPvivO0 i/tkFRr/WaoG+CWj+uYl1kusDphxthrDdDyY+5CzRsDqQqVD6uuuYCsQbILmSUTM Pg8OJ0g3ZwrALK9bzd7MPDpUcWbMVliAhfzvWuF8f6st13E20d3D6IDjoIr0hPsZ nIrWLNdDqUWwcsOqLM5XHU2QpiQcf49L43RqfzrOgIixU4Fa6FJFAOk744ONyab5 VvhwnyRuwGQtWL2FWQcwlsq+HWor+tOvGwgoCa24du/XqLv+t2x6TZXHATYUqOWP lXZCfJP+/yvu08Rgf8E6sZTWatLzeKhaCxDOmHqV27BCi1Gru6AiihpGTiZOV/pN u//Xy/wQLX2DS3KHgRDjaVTgENd+KQR32botQkklugv8L5kceNcCHwDszKfek481 c7ToQnW/YhFz+2dbDH+du+2OKCPIQMWlkd2xQsUCOTjeh//GSNcX5W5aW3RZ0gZu EYVBXGDzcYHpHQJAqAs/1OwKKCsRzzzQgyX5cA1WWpBdG1ucGbGLRHFttG7WGp41 cqeLaoGe7ik7kGsqwv7/lsCwU2isN6QgHBKUMVcJYlVt6wsYcXZmSrSrD762EE6u AQSYYLT6cIZg+Q== =BiyB -----END PGP SIGNATURE-----