[ubuntu/trusty-proposed] samba 2:4.0.13+dfsg-1ubuntu1 (Accepted)

Chuck Short zulcss at ubuntu.com
Thu Dec 12 01:12:18 UTC 2013 

samba (2:4.0.13+dfsg-1ubuntu1) trusty; urgency=low

  * Merge from Debian Unstable:
    - debian/VERSION.patch: Update vendor string to "Ubuntu".
  * debian/smb.conf;
    - Add "(Samba, Ubuntu)" to server string.
    - Comment out the default [homes] share, and add a comment about "valid users = %s"
      to show users how to restrict access to \\server\username to only username.
  + debian/samba-common.config:
    - Do not change prioritiy to high if dhclient3 is installed.
  + debian/control:
    - Don't build against or suggest ctdb and tdb.
  + debian/rules:
    - Drop explicit configuration options for ctdb and tdb.
  + Add ufw integration:
    - Created debian/samba.ufw.profile:
    - debian/rules, debian/samba.install: install profile
  + Add apport hook:
   - Created debian/source_samba.py.
   - debian/rules, debia/samb-common-bin.install: install hook.
  + debian/samba.logrotate: call upstart interfaces unconditionally instead
    of hacking arround with pid files.
  + Set sbmclients conflicts with samba4-clients less than 4.0.3+dfsg1-0.1ubuntu4,
    first dummy transitional package version.

samba (2:4.0.13+dfsg-1) unstable; urgency=high

  [ Steve Langasek ]
  * Move update-alternatives upgrade removal handling to the postinst, where
    it belongs.  Closes: #730090.
  * Really remove all references to encrypted passwords: the
    samba-common.config script still included references, which could cause
    upgrade failures in some cases.  Closes: #729167.

  [ Ivo De Decker ]
  * New upstream security release. Fixes:
    - CVE-2013-4408: DCE-RPC fragment length field is incorrectly checked
    - CVE-2012-6150: pam_winbind login without require_membership_of
                     restrictions
  * Add empty prerm scripts for samba and samba-common-bin.prerm, to allow
    upgrades from earlier versions with broken prerm script (bug introduced in
    2:4.0.10+dfsg-3)
  * Don't fail in postinst when removing old alternatives fails.

  [ Jelmer Vernooij ]
  * Fix invocations of 'update-alternatives --remove-all'. Closes: #731192

samba (2:4.0.12+dfsg-1) unstable; urgency=low

  [ Ivo De Decker ]
  * New upstream release.

  [ Debconf translations ]
  * Thai (Theppitak Karoonboonyanan).  Closes: #728525
  * Norwegian Bokmål (Bjørn Steensrud).  Closes: #729070
  * German (Holger Wansing).  Closes: #729210

  [ Jelmer Vernooij ]
  * Add 26_heimdal_compat: Fix compatibility with newer versions of
    Heimdal.

samba (2:4.0.11+dfsg-1) unstable; urgency=high

  * New upstream security release. Fixes:
    - CVE-2013-4475: ACLs are not checked on opening an alternate data stream
                     on a file or directory
    - CVE-2013-4476: Private key in key.pem world readable
  * Move world-readable private key file on upgrade to allow
    auto-regeneration.
  * Add check in samba-ad-dc init script for wrong permission on private key
    file that would prevent samba to start.
  * Update samba-libs.lintian-overrides for moved libtorture0.

Date: Wed, 11 Dec 2013 19:55:47 -0500
Changed-By: Chuck Short <zulcss at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/trusty/+source/samba/2:4.0.13+dfsg-1ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Wed, 11 Dec 2013 19:55:47 -0500
Source: samba
Binary: samba samba-libs samba-common samba-common-bin smbclient samba-testsuite registry-tools libparse-pidl-perl samba-dev samba-doc python-samba samba-dsdb-modules libpam-smbpass libsmbclient libsmbclient-dev libsmbsharemodes0 libsmbsharemodes-dev winbind libpam-winbind libnss-winbind samba-dbg libwbclient0 libwbclient-dev
Architecture: source
Version: 2:4.0.13+dfsg-1ubuntu1
Distribution: trusty
Urgency: high
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Chuck Short <zulcss at ubuntu.com>
Description: 
 libnss-winbind - Samba nameservice integration plugins
 libpam-smbpass - pluggable authentication module for Samba
 libpam-winbind - Windows domain authentication integration plugin
 libparse-pidl-perl - IDL compiler written in Perl
 libsmbclient - shared library for communication with SMB/CIFS servers
 libsmbclient-dev - development files for libsmbclient
 libsmbsharemodes-dev - development files for libsmbsharemodes
 libsmbsharemodes0 - shared library for non-samba access to the samba 'share modes' da
 libwbclient-dev - Samba winbind client library - development files
 libwbclient0 - Samba winbind client library
 python-samba - Python bindings for Samba
 registry-tools - tools for viewing and manipulating the Windows registry
 samba      - SMB/CIFS file, print, and login server for Unix
 samba-common - common files used by both the Samba server and client
 samba-common-bin - Samba common files used by both the server and the client
 samba-dbg  - Samba debugging symbols
 samba-dev  - tools for extending Samba
 samba-doc  - Samba documentation
 samba-dsdb-modules - Samba Directory Services Database
 samba-libs - Samba core libraries
 samba-testsuite - test suite from Samba
 smbclient  - command-line SMB/CIFS clients for Unix
 winbind    - service to resolve user and group information from Windows NT ser
Closes: 728525 729070 729167 729210 730090 731192
Changes: 
 samba (2:4.0.13+dfsg-1ubuntu1) trusty; urgency=low
 .
   * Merge from Debian Unstable:
     - debian/VERSION.patch: Update vendor string to "Ubuntu".
   * debian/smb.conf;
     - Add "(Samba, Ubuntu)" to server string.
     - Comment out the default [homes] share, and add a comment about "valid users = %s"
       to show users how to restrict access to \\server\username to only username.
   + debian/samba-common.config:
     - Do not change prioritiy to high if dhclient3 is installed.
   + debian/control:
     - Don't build against or suggest ctdb and tdb.
   + debian/rules:
     - Drop explicit configuration options for ctdb and tdb.
   + Add ufw integration:
     - Created debian/samba.ufw.profile:
     - debian/rules, debian/samba.install: install profile
   + Add apport hook:
    - Created debian/source_samba.py.
    - debian/rules, debia/samb-common-bin.install: install hook.
   + debian/samba.logrotate: call upstart interfaces unconditionally instead
     of hacking arround with pid files.
   + Set sbmclients conflicts with samba4-clients less than 4.0.3+dfsg1-0.1ubuntu4,
     first dummy transitional package version.
 .
 samba (2:4.0.13+dfsg-1) unstable; urgency=high
 .
   [ Steve Langasek ]
   * Move update-alternatives upgrade removal handling to the postinst, where
     it belongs.  Closes: #730090.
   * Really remove all references to encrypted passwords: the
     samba-common.config script still included references, which could cause
     upgrade failures in some cases.  Closes: #729167.
 .
   [ Ivo De Decker ]
   * New upstream security release. Fixes:
     - CVE-2013-4408: DCE-RPC fragment length field is incorrectly checked
     - CVE-2012-6150: pam_winbind login without require_membership_of
                      restrictions
   * Add empty prerm scripts for samba and samba-common-bin.prerm, to allow
     upgrades from earlier versions with broken prerm script (bug introduced in
     2:4.0.10+dfsg-3)
   * Don't fail in postinst when removing old alternatives fails.
 .
   [ Jelmer Vernooij ]
   * Fix invocations of 'update-alternatives --remove-all'. Closes: #731192
 .
 samba (2:4.0.12+dfsg-1) unstable; urgency=low
 .
   [ Ivo De Decker ]
   * New upstream release.
 .
   [ Debconf translations ]
   * Thai (Theppitak Karoonboonyanan).  Closes: #728525
   * Norwegian Bokmål (Bjørn Steensrud).  Closes: #729070
   * German (Holger Wansing).  Closes: #729210
 .
   [ Jelmer Vernooij ]
   * Add 26_heimdal_compat: Fix compatibility with newer versions of
     Heimdal.
 .
 samba (2:4.0.11+dfsg-1) unstable; urgency=high
 .
   * New upstream security release. Fixes:
     - CVE-2013-4475: ACLs are not checked on opening an alternate data stream
                      on a file or directory
     - CVE-2013-4476: Private key in key.pem world readable
   * Move world-readable private key file on upgrade to allow
     auto-regeneration.
   * Add check in samba-ad-dc init script for wrong permission on private key
     file that would prevent samba to start.
   * Update samba-libs.lintian-overrides for moved libtorture0.
Checksums-Sha1: 
 e07da1b2237583f961d41eee7a8ffc90a45eeb85 3308 samba_4.0.13+dfsg-1ubuntu1.dsc
 16adedf1fa633f2827f502647a60c621ce264071 15019148 samba_4.0.13+dfsg.orig.tar.xz
 1d05295b94f9d04c1178eec706950aac6b3c7db0 262595 samba_4.0.13+dfsg-1ubuntu1.debian.tar.gz
Checksums-Sha256: 
 830e7ca6b5698081e64b633402e9e9653192fe65f2169a1630bc56aaec670c5c 3308 samba_4.0.13+dfsg-1ubuntu1.dsc
 c316f8234ece0106dd2111dd90f41c0867ec018f80c2e7041c17d03536c036ad 15019148 samba_4.0.13+dfsg.orig.tar.xz
 1d2e7d3120aedc0f03372f60c86c3b997f35087e0ea9f725a40ca6f819cc5de4 262595 samba_4.0.13+dfsg-1ubuntu1.debian.tar.gz
Files: 
 e170b014e4b05c11d59d30e9734ce960 3308 net optional samba_4.0.13+dfsg-1ubuntu1.dsc
 2d1a2d2271af0d8511c0fddeae2cda39 15019148 net optional samba_4.0.13+dfsg.orig.tar.xz
 c7d90e11e5299898eff7dac133b1d4fe 262595 net optional samba_4.0.13+dfsg-1ubuntu1.debian.tar.gz
Original-Maintainer: Debian Samba Maintainers <pkg-samba-maint at lists.alioth.debian.org>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.15 (GNU/Linux)

iEYEARECAAYFAlKpCacACgkQIHZ33voUATteqgCfVsrBJdgPtIHyrUATsEBfNPIk
UjwAoLcUXBDP41l1YM1Oox6pWs1yy1IX
=Tjju
-----END PGP SIGNATURE-----

More information about the Trusty-changes mailing list