[Bug 1755057] Re: Samba 4.7.4 should not be shipped as an AD DC
Launchpad Bug Tracker
1755057 at bugs.launchpad.net
Mon Mar 19 12:54:22 UTC 2018
This bug was fixed in the package samba - 2:4.7.6+dfsg~ubuntu-0ubuntu1
---------------
samba (2:4.7.6+dfsg~ubuntu-0ubuntu1) bionic; urgency=medium
* New upstream version:
- Fix database corruption bug when upgrading from samba 4.6 or lower
AD controllers (LP: #1755057)
- Fix security issues: CVE-2018-1050 and CVE-2018-1057 (LP: #1755059)
* Remaining changes:
- debian/VERSION.patch: Update vendor string to "Ubuntu".
- debian/smb.conf;
+ Add "(Samba, Ubuntu)" to server string.
+ Comment out the default [homes] share, and add a comment about
"valid users = %s" to show users how to restrict access to
\\server\username to only username.
- debian/samba-common.config:
+ Do not change priority to high if dhclient3 is installed.
- Add apport hook:
+ Created debian/source_samba.py.
+ debian/rules, debian/samba-common-bin.install: install hook.
- Add extra DEP8 tests to samba (LP #1696823):
+ d/t/control, d/t/cifs-share-access: access a file in a share using cifs
+ d/t/control, d/t/smbclient-anonymous-share-list: list available shares
anonymously
+ d/t/control, d/t/smbclient-authenticated-share-list: list available
shares using an authenticated connection
+ d/t/control, d/t/smbclient-share-access: create a share and download a
file from it
- d/samba-common.dhcp: If systemctl is available, use it to query the
status of the smbd service before trying to reload it. Otherwise,
keep the same check as before and reload the service based on the
existence of the initscript. (LP #1579597)
- d/control, d/rules: Disable glusterfs support because it's not in main.
MIR bug is https://launchpad.net/bugs/1274247
-- Andreas Hasenack <andreas at canonical.com> Tue, 13 Mar 2018 16:58:49
-0300
** Changed in: samba (Ubuntu)
Status: In Progress => Fix Released
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2018-1050
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2018-1057
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to samba in Ubuntu.
https://bugs.launchpad.net/bugs/1755057
Title:
Samba 4.7.4 should not be shipped as an AD DC
Status in samba package in Ubuntu:
Fix Released
Bug description:
Samba 4.7.4 and below has an unfortunate upgrade bug
https://bugzilla.samba.org/show_bug.cgi?id=13228
See the release notes for Samba 4.7.5
https://www.samba.org/samba/history/samba-4.7.5.html
Please do not ship Samba 4.7.4 in Ubuntu 18.04, instead given the
security release due tomorrow, ship 4.7.6 with both the security fix
and this fixed.
Thanks!
Andrew Bartlett
Samba Team
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/samba/+bug/1755057/+subscriptions
More information about the foundations-bugs
mailing list