[ubuntu/eoan-proposed] samba 2:4.10.7+dfsg-0ubuntu2 (Accepted)

[Steve Beattie]

samba (2:4.10.7+dfsg-0ubuntu2) eoan; urgency=medium

  * SECURITY UPDATE: restricted share escape by user (LP: #1842533)
    - debian/patches/CVE-2019-10197-01-v4-10.patch: smbd: separate
      out impersonation debug info into a new function.
    - debian/patches/CVE-2019-10197-02-v4-10.patch: smbd: make sure that
      change_to_user_internal() always resets current_user.done_chdir
    - debian/patches/CVE-2019-10197-03-v4-10.patch: smbd: make sure we
      reset current_user.{need,done}_chdir in become_root()
    - debian/patches/CVE-2019-10197-04-v4-10.patch: selftest: make
      fsrvp_share its own independent subdirectory
    - debian/patches/CVE-2019-10197-05-v4-10.patch:
      test_smbclient_s3.sh: add regression test for the no permission
      on share root problem
    - debian/patches/CVE-2019-10197-06-v4-10.patch: smbd: split
      change_to_user_impersonate() out of change_to_user_internal()
    - CVE-2019-10197

Date: Fri, 30 Aug 2019 11:07:19 -0700
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Bryce Harrington <bryce at bryceharrington.org>
https://launchpad.net/ubuntu/+source/samba/2:4.10.7+dfsg-0ubuntu2
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 30 Aug 2019 11:07:19 -0700
Source: samba
Architecture: source
Version: 2:4.10.7+dfsg-0ubuntu2
Distribution: eoan
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Launchpad-Bugs-Fixed: 1842533
Changes:
 samba (2:4.10.7+dfsg-0ubuntu2) eoan; urgency=medium
 .
   * SECURITY UPDATE: restricted share escape by user (LP: #1842533)
     - debian/patches/CVE-2019-10197-01-v4-10.patch: smbd: separate
       out impersonation debug info into a new function.
     - debian/patches/CVE-2019-10197-02-v4-10.patch: smbd: make sure that
       change_to_user_internal() always resets current_user.done_chdir
     - debian/patches/CVE-2019-10197-03-v4-10.patch: smbd: make sure we
       reset current_user.{need,done}_chdir in become_root()
     - debian/patches/CVE-2019-10197-04-v4-10.patch: selftest: make
       fsrvp_share its own independent subdirectory
     - debian/patches/CVE-2019-10197-05-v4-10.patch:
       test_smbclient_s3.sh: add regression test for the no permission
       on share root problem
     - debian/patches/CVE-2019-10197-06-v4-10.patch: smbd: split
       change_to_user_impersonate() out of change_to_user_internal()
     - CVE-2019-10197
Checksums-Sha1:
 f10eb09903e0a2372a2cdcc1ba9f3642d44f11dd 4207 samba_4.10.7+dfsg-0ubuntu2.dsc
 c81b5d18f563983a072787ce1b9d7720baf8eae8 243588 samba_4.10.7+dfsg-0ubuntu2.debian.tar.xz
 bcf3941ab9f7fd65fd348883051615f520352220 11825 samba_4.10.7+dfsg-0ubuntu2_source.buildinfo
Checksums-Sha256:
 e0bece9703703542d63e7483819345c232c2a3be1b6ab64653fb89fc91006ab7 4207 samba_4.10.7+dfsg-0ubuntu2.dsc
 ba10dd4de27a9e7137aebd288f2caf54d6cd91e08a9cbe6cafcbfd8558e9f8f8 243588 samba_4.10.7+dfsg-0ubuntu2.debian.tar.xz
 d8ca595989f489e37536fbc884f467d22148d4d7318fb5d3eb61ad95c2d4b66d 11825 samba_4.10.7+dfsg-0ubuntu2_source.buildinfo
Files:
 4de0621575722758b885d48899c8a7df 4207 net optional samba_4.10.7+dfsg-0ubuntu2.dsc
 b209cc9808176471b760a8523b308a1e 243588 net optional samba_4.10.7+dfsg-0ubuntu2.debian.tar.xz
 aa7b2e38386a6716be1f0c5966a06b03 11825 net optional samba_4.10.7+dfsg-0ubuntu2_source.buildinfo
Original-Maintainer: Debian Samba Maintainers <pkg-samba-maint at lists.alioth.debian.org>

-----BEGIN PGP SIGNATURE-----
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=rmdN
-----END PGP SIGNATURE-----