* [Buildroot] [PATCH 1/1] package/samba4: security bump version to 4.10.8
@ 2019-09-04 17:58 Bernd Kuhls
2019-09-04 19:32 ` Peter Korsgaard
2019-09-04 20:56 ` Peter Korsgaard
0 siblings, 2 replies; 3+ messages in thread
From: Bernd Kuhls @ 2019-09-04 17:58 UTC (permalink / raw)
To: buildroot
Release notes: https://www.samba.org/samba/history/samba-4.10.8.html
Fixes CVE-2019-10197
Combination of parameters and permissions can allow user
to escape from the share path definition.
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
---
package/samba4/samba4.hash | 4 ++--
package/samba4/samba4.mk | 2 +-
2 files changed, 3 insertions(+), 3 deletions(-)
diff --git a/package/samba4/samba4.hash b/package/samba4/samba4.hash
index fbc680cb32..7d41ad8fbf 100644
--- a/package/samba4/samba4.hash
+++ b/package/samba4/samba4.hash
@@ -1,4 +1,4 @@
# Locally calculated after checking pgp signature
-# https://download.samba.org/pub/samba/stable/samba-4.10.7.tar.asc
-sha256 34f30494b6b63700f54be22be636e8a6e0430577166a76a017075e11c02a1ebb samba-4.10.7.tar.gz
+# https://download.samba.org/pub/samba/stable/samba-4.10.8.tar.asc
+sha256 c41f05fb567f7359998b451543501c7690a2bf6551d658a76bd6916316a410f4 samba-4.10.8.tar.gz
sha256 8ceb4b9ee5adedde47b31e975c1d90c73ad27b6b165a1dcd80c7c545eb65b903 COPYING
diff --git a/package/samba4/samba4.mk b/package/samba4/samba4.mk
index 1d097f1d48..172bdb3b8f 100644
--- a/package/samba4/samba4.mk
+++ b/package/samba4/samba4.mk
@@ -4,7 +4,7 @@
#
################################################################################
-SAMBA4_VERSION = 4.10.7
+SAMBA4_VERSION = 4.10.8
SAMBA4_SITE = https://download.samba.org/pub/samba/stable
SAMBA4_SOURCE = samba-$(SAMBA4_VERSION).tar.gz
SAMBA4_INSTALL_STAGING = YES
--
2.20.1
^ permalink raw reply related [flat|nested] 3+ messages in thread
* [Buildroot] [PATCH 1/1] package/samba4: security bump version to 4.10.8
2019-09-04 17:58 [Buildroot] [PATCH 1/1] package/samba4: security bump version to 4.10.8 Bernd Kuhls
@ 2019-09-04 19:32 ` Peter Korsgaard
2019-09-04 20:56 ` Peter Korsgaard
1 sibling, 0 replies; 3+ messages in thread
From: Peter Korsgaard @ 2019-09-04 19:32 UTC (permalink / raw)
To: buildroot
>>>>> "Bernd" == Bernd Kuhls <bernd.kuhls@t-online.de> writes:
> Release notes: https://www.samba.org/samba/history/samba-4.10.8.html
> Fixes CVE-2019-10197
> Combination of parameters and permissions can allow user
> to escape from the share path definition.
> Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Committed, thanks.
--
Bye, Peter Korsgaard
^ permalink raw reply [flat|nested] 3+ messages in thread
* [Buildroot] [PATCH 1/1] package/samba4: security bump version to 4.10.8
2019-09-04 17:58 [Buildroot] [PATCH 1/1] package/samba4: security bump version to 4.10.8 Bernd Kuhls
2019-09-04 19:32 ` Peter Korsgaard
@ 2019-09-04 20:56 ` Peter Korsgaard
1 sibling, 0 replies; 3+ messages in thread
From: Peter Korsgaard @ 2019-09-04 20:56 UTC (permalink / raw)
To: buildroot
>>>>> "Bernd" == Bernd Kuhls <bernd.kuhls@t-online.de> writes:
> Release notes: https://www.samba.org/samba/history/samba-4.10.8.html
> Fixes CVE-2019-10197
> Combination of parameters and permissions can allow user
> to escape from the share path definition.
> Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Committed to 2019.08.x, thanks.
For 2019.02.x and 2019.05.x I will instead bump to 4.9.13, which fixes
the same issue.
--
Bye, Peter Korsgaard
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2019-09-04 20:56 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2019-09-04 17:58 [Buildroot] [PATCH 1/1] package/samba4: security bump version to 4.10.8 Bernd Kuhls
2019-09-04 19:32 ` Peter Korsgaard
2019-09-04 20:56 ` Peter Korsgaard
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.