All of lore.kernel.org
 help / color / mirror / Atom feed
* [Buildroot] [PATCH 1/1] package/samba4: security bump version to 4.19.2
@ 2023-10-16 18:08 Bernd Kuhls
  2023-11-01 21:36 ` Thomas Petazzoni via buildroot
  0 siblings, 1 reply; 5+ messages in thread
From: Bernd Kuhls @ 2023-10-16 18:08 UTC (permalink / raw)
  To: buildroot

Fixes CVE-2023-5568:
Heap buffer overflow with freshness tokens in the Heimdal KDC in Samba 4.19

Release notes:
https://www.samba.org/samba/history/samba-4.19.2.html

Signed-off-by: Bernd Kuhls <bernd@kuhls.net>
---
 package/samba4/samba4.hash | 4 ++--
 package/samba4/samba4.mk   | 2 +-
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/package/samba4/samba4.hash b/package/samba4/samba4.hash
index 5e65295e4c..06b9cecddc 100644
--- a/package/samba4/samba4.hash
+++ b/package/samba4/samba4.hash
@@ -1,4 +1,4 @@
 # Locally calculated after checking pgp signature
-# https://download.samba.org/pub/samba/stable/samba-4.19.1.tar.asc
-sha256  ce3b7f0d18bf91aa5fd646e8bb385a3b35375b703c6e5123b02b85a1abc81879  samba-4.19.1.tar.gz
+# https://download.samba.org/pub/samba/stable/samba-4.19.2.tar.asc
+sha256  9e63f0505e1c631f1db0b7a9349a51e925c026ca03af3fd5d812228bb597d393  samba-4.19.2.tar.gz
 sha256  8ceb4b9ee5adedde47b31e975c1d90c73ad27b6b165a1dcd80c7c545eb65b903  COPYING
diff --git a/package/samba4/samba4.mk b/package/samba4/samba4.mk
index 124ce564d2..832b128132 100644
--- a/package/samba4/samba4.mk
+++ b/package/samba4/samba4.mk
@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-SAMBA4_VERSION = 4.19.1
+SAMBA4_VERSION = 4.19.2
 SAMBA4_SITE = https://download.samba.org/pub/samba/stable
 SAMBA4_SOURCE = samba-$(SAMBA4_VERSION).tar.gz
 SAMBA4_INSTALL_STAGING = YES
-- 
2.39.2

_______________________________________________
buildroot mailing list
buildroot@buildroot.org
https://lists.buildroot.org/mailman/listinfo/buildroot

^ permalink raw reply related	[flat|nested] 5+ messages in thread
* Re: [Buildroot] [PATCH 1/1] package/samba4: security bump version to 4.19.2
  2023-10-16 18:08 [Buildroot] [PATCH 1/1] package/samba4: security bump version to 4.19.2 Bernd Kuhls
@ 2023-11-01 21:36 ` Thomas Petazzoni via buildroot
  2023-11-08 12:19   ` Peter Korsgaard
       [not found]   ` <8734xgtp1w.fsf__14670.3781488881$1699446027$gmane$org@48ers.dk>
  0 siblings, 2 replies; 5+ messages in thread
From: Thomas Petazzoni via buildroot @ 2023-11-01 21:36 UTC (permalink / raw)
  To: Bernd Kuhls; +Cc: buildroot

On Mon, 16 Oct 2023 20:08:55 +0200
Bernd Kuhls <bernd@kuhls.net> wrote:

> Fixes CVE-2023-5568:
> Heap buffer overflow with freshness tokens in the Heimdal KDC in Samba 4.19
> 
> Release notes:
> https://www.samba.org/samba/history/samba-4.19.2.html
> 
> Signed-off-by: Bernd Kuhls <bernd@kuhls.net>
> ---
>  package/samba4/samba4.hash | 4 ++--
>  package/samba4/samba4.mk   | 2 +-
>  2 files changed, 3 insertions(+), 3 deletions(-)

Applied to master, thanks.

Thomas
-- 
Thomas Petazzoni, CTO, Bootlin
Embedded Linux and Kernel engineering
https://bootlin.com
_______________________________________________
buildroot mailing list
buildroot@buildroot.org
https://lists.buildroot.org/mailman/listinfo/buildroot

^ permalink raw reply	[flat|nested] 5+ messages in thread
* Re: [Buildroot] [PATCH 1/1] package/samba4: security bump version to 4.19.2
  2023-11-01 21:36 ` Thomas Petazzoni via buildroot
@ 2023-11-08 12:19   ` Peter Korsgaard
       [not found]   ` <8734xgtp1w.fsf__14670.3781488881$1699446027$gmane$org@48ers.dk>
  1 sibling, 0 replies; 5+ messages in thread
From: Peter Korsgaard @ 2023-11-08 12:19 UTC (permalink / raw)
  To: Thomas Petazzoni via buildroot; +Cc: Bernd Kuhls, Thomas Petazzoni

>>>>> "Thomas" == Thomas Petazzoni via buildroot <buildroot@buildroot.org> writes:

 > On Mon, 16 Oct 2023 20:08:55 +0200
 > Bernd Kuhls <bernd@kuhls.net> wrote:

 >> Fixes CVE-2023-5568:
 >> Heap buffer overflow with freshness tokens in the Heimdal KDC in Samba 4.19
 >> 
 >> Release notes:
 >> https://www.samba.org/samba/history/samba-4.19.2.html
 >> 
 >> Signed-off-by: Bernd Kuhls <bernd@kuhls.net>
 >> ---
 >> package/samba4/samba4.hash | 4 ++--
 >> package/samba4/samba4.mk   | 2 +-
 >> 2 files changed, 3 insertions(+), 3 deletions(-)

 > Applied to master, thanks.

From the looks of it, this only affects 4.19.x and not the 4.18.8 we
have in 2023.02.x / 2023.08.x, right?

-- 
Bye, Peter Korsgaard
_______________________________________________
buildroot mailing list
buildroot@buildroot.org
https://lists.buildroot.org/mailman/listinfo/buildroot

^ permalink raw reply	[flat|nested] 5+ messages in thread
* Re: [Buildroot] [PATCH 1/1] package/samba4: security bump version to 4.19.2
       [not found]   ` <8734xgtp1w.fsf__14670.3781488881$1699446027$gmane$org@48ers.dk>
@ 2023-11-29 21:26     ` Bernd Kuhls
  2023-11-30  8:14       ` Peter Korsgaard
  0 siblings, 1 reply; 5+ messages in thread
From: Bernd Kuhls @ 2023-11-29 21:26 UTC (permalink / raw)
  To: buildroot

Am Wed, 08 Nov 2023 13:19:55 +0100 schrieb Peter Korsgaard:

> From the looks of it, this only affects 4.19.x and not the 4.18.8 we
> have in 2023.02.x / 2023.08.x, right?

Hi Peter,

sorry for answering late, but yes, I think you are right:
https://ubuntu.com/security/CVE-2023-5568
"appears to be 4.19 only"

But 4.18.9 is out now which fixes CVE-2018-14628
https://www.samba.org/samba/history/samba-4.18.9.html

Regards, Bernd

_______________________________________________
buildroot mailing list
buildroot@buildroot.org
https://lists.buildroot.org/mailman/listinfo/buildroot

^ permalink raw reply	[flat|nested] 5+ messages in thread
* Re: [Buildroot] [PATCH 1/1] package/samba4: security bump version to 4.19.2
  2023-11-29 21:26     ` Bernd Kuhls
@ 2023-11-30  8:14       ` Peter Korsgaard
  0 siblings, 0 replies; 5+ messages in thread
From: Peter Korsgaard @ 2023-11-30  8:14 UTC (permalink / raw)
  To: Bernd Kuhls; +Cc: buildroot

>>>>> "Bernd" == Bernd Kuhls <bernd@kuhls.net> writes:

 > Am Wed, 08 Nov 2023 13:19:55 +0100 schrieb Peter Korsgaard:
 >> From the looks of it, this only affects 4.19.x and not the 4.18.8 we
 >> have in 2023.02.x / 2023.08.x, right?

 > Hi Peter,

 > sorry for answering late, but yes, I think you are right:
 > https://ubuntu.com/security/CVE-2023-5568
 > "appears to be 4.19 only"

Ok, good.

 > But 4.18.9 is out now which fixes CVE-2018-14628
 > https://www.samba.org/samba/history/samba-4.18.9.html

Ok, will you send a bump for that?

-- 
Bye, Peter Korsgaard
_______________________________________________
buildroot mailing list
buildroot@buildroot.org
https://lists.buildroot.org/mailman/listinfo/buildroot

^ permalink raw reply	[flat|nested] 5+ messages in thread
end of thread, other threads:[~2023-11-30  8:25 UTC | newest]

Thread overview: 5+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2023-10-16 18:08 [Buildroot] [PATCH 1/1] package/samba4: security bump version to 4.19.2 Bernd Kuhls
2023-11-01 21:36 ` Thomas Petazzoni via buildroot
2023-11-08 12:19   ` Peter Korsgaard
     [not found]   ` <8734xgtp1w.fsf__14670.3781488881$1699446027$gmane$org@48ers.dk>
2023-11-29 21:26     ` Bernd Kuhls
2023-11-30  8:14       ` Peter Korsgaard

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.