[ubuntu/quantal] samba 2:3.6.5-2ubuntu1 (Accepted)
James Page
james.page at ubuntu.com
Tue May 15 17:05:49 UTC 2012
samba (2:3.6.5-2ubuntu1) quantal; urgency=low
* Merge from Debian unstable, remaining changes:
+ debian/patches/VERSION.patch:
- set SAMBA_VERSION_SUFFIX to Ubuntu.
+ debian/smb.conf:
- add "(Samba, Ubuntu)" to server string.
- comment out the default [homes] share, and add a comment about
"valid users = %S" to show users how to restrict access to
\\server\username to only username.
- Other changes now in Debian packaging.
+ debian/samba-common.config:
- Do not change priority to high if dhclient3 is installed.
- Use priority medium instead of high for the workgroup question.
+ debian/control:
- Don't build against or suggest ctdb.
- Add dependency on samba-common-bin to samba.
+ Add ufw integration:
- Created debian/samba.ufw.profile
- debian/rules, debian/samba.install: install profile.
- debian/control: have samba suggest ufw.
+ Add apport hook:
- Created debian/source_samba.py.
- debian/rules, debian/samba-common-bin.install: install hook.
+ Switch to upstart:
- Added debian/samba.{nmbd,smbd}.upstart.
- debian/samba.logrotate, debian/samba-common.dhcp, debian/samba.if-up:
Make upstart compatible.
* d/samba.install, d/samba-common-bin.install: Restore apport hook and ufw
profile (LP: #999764).
* Dropped:
+ debian/patches/CVE-2012-1182-*.patch: fixed in upstream release 3.6.4.
+ debian/patches/CVE-2012-2111.patch: fixed in upstream release 3.6.5.
+ debian/patches/fix-debuglevel-name-conflict.patch: fixed upstream -
debug_level is no longer used as a global variable name.
+ debian/patches/error-trans.fix-276472: fixed upstream.
samba (2:3.6.5-2) unstable; urgency=low
* The yearly "SambaXP bug cleaning party" release. 11 years
SambaXP, 20 years Samba and counting...
* Make samba-common "Multi-Arch: foreign"
* Adapt patch in upstream #7499 and stop nss_wins clobbering other
daemon's logfiles. Closes: #598313
* Add some mention about some use for the user information in Kerberos
environments in the smbspool manpage. Closes: #387266
* Drop link to no longer provided "Using Samba" documentation in
HTML documentation summary file. Closes: #604768
* Provide WHATSNEW.txt in samba-doc too as it is linked from the
documentation summary file. Do not compress that file.
* Fix link to WHATSNEW.txt in HTML documentation summary file. This
is the second part of the fix for #604768
* Use lp_state_dir() instead of get_dyn_STATEDIR() in
fhs-filespaths.patch as the latter does indeed hardcode the
location for passdb.tdb and secrets.tdb to /var/lib/samba
(the compile-time option for state directory and NOT the configurable
value). This is left to "state directory" instead of "private dir"
at least as of now, because if doesn't change anything to the
current behaviour, but allows the files' location to be configurable
through "state directory" (and not "private dir").
Closes: #249873
* Disable useless smbtorture4 build. Thanks to Ivo De Decker for the patch.
Closes: #670561
* Add upstream commit that adds waf source to the buildtools/
directory. As upstream will, one day or another, merge this, I
prefer this over removing the waf binary and repack upstream
tarball.
Closes: #654499
* Build-Conflict with python-ldb and python-ldb-dev to avoid build
failures when some versions of these packages are locally installed.
Closes: #657314
* Rename fix-samba.ldip-syntax.patch to fix-samba.ldif-syntax.patch
* Split NSS modules into a new libnss-winbind binary package.
Closes: #646292
* Add a NEWS.Debian entry about the libnss-winbind split and, while at
it, add an entry for libpam-winbind too (as it will affect upgrades
from squeeze).
* Drop code that was moving files around in samba.postinst and
winbind.postinst for pre-squeeze versions of the package.
* Drop code that was modifying a deprecated "passdb backend" setting
in smb.conf for pre-squeeze versions of the package (in
samba-common.config).
* Add Should-Start dependency to winbind init script to guarantee
that the samba init script is started before winbind if present.
Closes: #638066
* Provide a (basic) manpage to smbtorture(1). Closes: #528735
* Turkish debconf translation update (Atila KOÇ). Closes: #672447
* Drop the code that generates an smbpasswd file from the system's
user list. This adds very long delays on systems with many users,
including those with external user backends. It also makes much
less sense nowadays and the use of libpam-smbpass can easily
fill most of the needs. Closes: #671926
* Merged from Ubuntu:
- Set 'usershare allow guests', so that usershare admins are
allowed to create public shares in addition to authenticated
ones.
- add map to guest = Bad user, maps bad username to guest access.
This allows for anonymous user shares. Closes: #672497
samba (2:3.6.5-1) unstable; urgency=low
* New upstream release. Fixes CVE-2012-2111: Incorrect permission
checks when granting/removing privileges can compromise file
server security.
* Build-Depend on debhelper >= 9~ (which is in unstable for a few
months now)
* Use "set -e" in maintainer scripts instead of passing -e in the
shebang line
* Update Standards to 3.9.3 (checked, no change)
samba (2:3.6.4-1) unstable; urgency=low
[ Christian Perrier ]
* Two changes in the previous version should indeed read:
- samba.postinst: Avoid scary pdbedit warnings on first import.
- samba-common.postinst: Add more informative error message for the case
where smb.conf was manually deleted.
Closes: #664509
[ Jelmer Vernooij ]
* New upstream release.
+ Fixes CVE-2012-1182: PIDL based autogenerated code allows overwriting
beyond of allocated array.
Date: Tue, 15 May 2012 17:00:56 +0100
Changed-By: James Page <james.page at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/quantal/+source/samba/2:3.6.5-2ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Tue, 15 May 2012 17:00:56 +0100
Source: samba
Binary: samba samba-common-bin samba-common samba-tools smbclient swat samba-doc samba-doc-pdf libpam-smbpass libsmbclient libsmbclient-dev winbind libpam-winbind libnss-winbind samba-dbg libwbclient0 libwbclient-dev
Architecture: source
Version: 2:3.6.5-2ubuntu1
Distribution: quantal
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: James Page <james.page at ubuntu.com>
Description:
libnss-winbind - Samba nameservice integration plugins
libpam-smbpass - pluggable authentication module for Samba
libpam-winbind - Windows domain authentication integration plugin
libsmbclient - shared library for communication with SMB/CIFS servers
libsmbclient-dev - development files for libsmbclient
libwbclient-dev - Samba winbind client library - development files
libwbclient0 - Samba winbind client library
samba - SMB/CIFS file, print, and login server for Unix
samba-common - common files used by both the Samba server and client
samba-common-bin - common files used by both the Samba server and client
samba-dbg - Samba debugging symbols
samba-doc - Samba documentation
samba-doc-pdf - Samba documentation in PDF format
samba-tools - Samba testing utilities
smbclient - command-line SMB/CIFS clients for Unix
swat - Samba Web Administration Tool
winbind - Samba nameservice integration server
Closes: 249873 387266 528735 598313 604768 638066 646292 654499 657314 664509 670561 671926 672447 672497
Launchpad-Bugs-Fixed: 999764
Changes:
samba (2:3.6.5-2ubuntu1) quantal; urgency=low
.
* Merge from Debian unstable, remaining changes:
+ debian/patches/VERSION.patch:
- set SAMBA_VERSION_SUFFIX to Ubuntu.
+ debian/smb.conf:
- add "(Samba, Ubuntu)" to server string.
- comment out the default [homes] share, and add a comment about
"valid users = %S" to show users how to restrict access to
\\server\username to only username.
- Other changes now in Debian packaging.
+ debian/samba-common.config:
- Do not change priority to high if dhclient3 is installed.
- Use priority medium instead of high for the workgroup question.
+ debian/control:
- Don't build against or suggest ctdb.
- Add dependency on samba-common-bin to samba.
+ Add ufw integration:
- Created debian/samba.ufw.profile
- debian/rules, debian/samba.install: install profile.
- debian/control: have samba suggest ufw.
+ Add apport hook:
- Created debian/source_samba.py.
- debian/rules, debian/samba-common-bin.install: install hook.
+ Switch to upstart:
- Added debian/samba.{nmbd,smbd}.upstart.
- debian/samba.logrotate, debian/samba-common.dhcp, debian/samba.if-up:
Make upstart compatible.
* d/samba.install, d/samba-common-bin.install: Restore apport hook and ufw
profile (LP: #999764).
* Dropped:
+ debian/patches/CVE-2012-1182-*.patch: fixed in upstream release 3.6.4.
+ debian/patches/CVE-2012-2111.patch: fixed in upstream release 3.6.5.
+ debian/patches/fix-debuglevel-name-conflict.patch: fixed upstream -
debug_level is no longer used as a global variable name.
+ debian/patches/error-trans.fix-276472: fixed upstream.
.
samba (2:3.6.5-2) unstable; urgency=low
.
* The yearly "SambaXP bug cleaning party" release. 11 years
SambaXP, 20 years Samba and counting...
* Make samba-common "Multi-Arch: foreign"
* Adapt patch in upstream #7499 and stop nss_wins clobbering other
daemon's logfiles. Closes: #598313
* Add some mention about some use for the user information in Kerberos
environments in the smbspool manpage. Closes: #387266
* Drop link to no longer provided "Using Samba" documentation in
HTML documentation summary file. Closes: #604768
* Provide WHATSNEW.txt in samba-doc too as it is linked from the
documentation summary file. Do not compress that file.
* Fix link to WHATSNEW.txt in HTML documentation summary file. This
is the second part of the fix for #604768
* Use lp_state_dir() instead of get_dyn_STATEDIR() in
fhs-filespaths.patch as the latter does indeed hardcode the
location for passdb.tdb and secrets.tdb to /var/lib/samba
(the compile-time option for state directory and NOT the configurable
value). This is left to "state directory" instead of "private dir"
at least as of now, because if doesn't change anything to the
current behaviour, but allows the files' location to be configurable
through "state directory" (and not "private dir").
Closes: #249873
* Disable useless smbtorture4 build. Thanks to Ivo De Decker for the patch.
Closes: #670561
* Add upstream commit that adds waf source to the buildtools/
directory. As upstream will, one day or another, merge this, I
prefer this over removing the waf binary and repack upstream
tarball.
Closes: #654499
* Build-Conflict with python-ldb and python-ldb-dev to avoid build
failures when some versions of these packages are locally installed.
Closes: #657314
* Rename fix-samba.ldip-syntax.patch to fix-samba.ldif-syntax.patch
* Split NSS modules into a new libnss-winbind binary package.
Closes: #646292
* Add a NEWS.Debian entry about the libnss-winbind split and, while at
it, add an entry for libpam-winbind too (as it will affect upgrades
from squeeze).
* Drop code that was moving files around in samba.postinst and
winbind.postinst for pre-squeeze versions of the package.
* Drop code that was modifying a deprecated "passdb backend" setting
in smb.conf for pre-squeeze versions of the package (in
samba-common.config).
* Add Should-Start dependency to winbind init script to guarantee
that the samba init script is started before winbind if present.
Closes: #638066
* Provide a (basic) manpage to smbtorture(1). Closes: #528735
* Turkish debconf translation update (Atila KOÇ). Closes: #672447
* Drop the code that generates an smbpasswd file from the system's
user list. This adds very long delays on systems with many users,
including those with external user backends. It also makes much
less sense nowadays and the use of libpam-smbpass can easily
fill most of the needs. Closes: #671926
* Merged from Ubuntu:
- Set 'usershare allow guests', so that usershare admins are
allowed to create public shares in addition to authenticated
ones.
- add map to guest = Bad user, maps bad username to guest access.
This allows for anonymous user shares. Closes: #672497
.
samba (2:3.6.5-1) unstable; urgency=low
.
* New upstream release. Fixes CVE-2012-2111: Incorrect permission
checks when granting/removing privileges can compromise file
server security.
* Build-Depend on debhelper >= 9~ (which is in unstable for a few
months now)
* Use "set -e" in maintainer scripts instead of passing -e in the
shebang line
* Update Standards to 3.9.3 (checked, no change)
.
samba (2:3.6.4-1) unstable; urgency=low
.
[ Christian Perrier ]
* Two changes in the previous version should indeed read:
- samba.postinst: Avoid scary pdbedit warnings on first import.
- samba-common.postinst: Add more informative error message for the case
where smb.conf was manually deleted.
Closes: #664509
.
[ Jelmer Vernooij ]
* New upstream release.
+ Fixes CVE-2012-1182: PIDL based autogenerated code allows overwriting
beyond of allocated array.
Checksums-Sha1:
051ae99b889f8089cd62599fb3251f18de798769 3161 samba_3.6.5-2ubuntu1.dsc
0394be5bed7a0f3b8d90d1d0bd3d957fc91c21f0 24458774 samba_3.6.5.orig.tar.bz2
c58c6a5a705fe2033cdb3eb0884313b795fa6da7 405352 samba_3.6.5-2ubuntu1.debian.tar.gz
Checksums-Sha256:
639a67637798b1a2e284cc028c32b065312cf043b15be5362d7cf0cc5f404066 3161 samba_3.6.5-2ubuntu1.dsc
e0b8b2b23497b3d82de2b103f312f0696ea8d5e529b7e15e40576e9387f3c421 24458774 samba_3.6.5.orig.tar.bz2
388978cd6c7ff31fdcfe26d698d87e87c39690b3382d63af83c05df802d5cc7a 405352 samba_3.6.5-2ubuntu1.debian.tar.gz
Files:
2a253a9f3f631d65ece94845b690c454 3161 net optional samba_3.6.5-2ubuntu1.dsc
01685e2354f4126d9c692f197fdb4bc4 24458774 net optional samba_3.6.5.orig.tar.bz2
d7ef217ad8b93fc5e8ff6b27af7b4f8e 405352 net optional samba_3.6.5-2ubuntu1.debian.tar.gz
Original-Maintainer: Debian Samba Maintainers <pkg-samba-maint at lists.alioth.debian.org>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)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=DbCB
-----END PGP SIGNATURE-----
More information about the Quantal-changes
mailing list