* [Buildroot] [PATCH 1/1] package/samba4: security bump version to 4.19.2
@ 2023-10-16 18:08 Bernd Kuhls
2023-11-01 21:36 ` Thomas Petazzoni via buildroot
0 siblings, 1 reply; 5+ messages in thread
From: Bernd Kuhls @ 2023-10-16 18:08 UTC (permalink / raw)
To: buildroot
Fixes CVE-2023-5568:
Heap buffer overflow with freshness tokens in the Heimdal KDC in Samba 4.19
Release notes:
https://www.samba.org/samba/history/samba-4.19.2.html
Signed-off-by: Bernd Kuhls <bernd@kuhls.net>
---
package/samba4/samba4.hash | 4 ++--
package/samba4/samba4.mk | 2 +-
2 files changed, 3 insertions(+), 3 deletions(-)
diff --git a/package/samba4/samba4.hash b/package/samba4/samba4.hash
index 5e65295e4c..06b9cecddc 100644
--- a/package/samba4/samba4.hash
+++ b/package/samba4/samba4.hash
@@ -1,4 +1,4 @@
# Locally calculated after checking pgp signature
-# https://download.samba.org/pub/samba/stable/samba-4.19.1.tar.asc
-sha256 ce3b7f0d18bf91aa5fd646e8bb385a3b35375b703c6e5123b02b85a1abc81879 samba-4.19.1.tar.gz
+# https://download.samba.org/pub/samba/stable/samba-4.19.2.tar.asc
+sha256 9e63f0505e1c631f1db0b7a9349a51e925c026ca03af3fd5d812228bb597d393 samba-4.19.2.tar.gz
sha256 8ceb4b9ee5adedde47b31e975c1d90c73ad27b6b165a1dcd80c7c545eb65b903 COPYING
diff --git a/package/samba4/samba4.mk b/package/samba4/samba4.mk
index 124ce564d2..832b128132 100644
--- a/package/samba4/samba4.mk
+++ b/package/samba4/samba4.mk
@@ -4,7 +4,7 @@
#
################################################################################
-SAMBA4_VERSION = 4.19.1
+SAMBA4_VERSION = 4.19.2
SAMBA4_SITE = https://download.samba.org/pub/samba/stable
SAMBA4_SOURCE = samba-$(SAMBA4_VERSION).tar.gz
SAMBA4_INSTALL_STAGING = YES
--
2.39.2
_______________________________________________
buildroot mailing list
buildroot@buildroot.org
https://lists.buildroot.org/mailman/listinfo/buildroot
^ permalink raw reply related [flat|nested] 5+ messages in thread
* Re: [Buildroot] [PATCH 1/1] package/samba4: security bump version to 4.19.2
2023-10-16 18:08 [Buildroot] [PATCH 1/1] package/samba4: security bump version to 4.19.2 Bernd Kuhls
@ 2023-11-01 21:36 ` Thomas Petazzoni via buildroot
2023-11-08 12:19 ` Peter Korsgaard
[not found] ` <8734xgtp1w.fsf__14670.3781488881$1699446027$gmane$org@48ers.dk>
0 siblings, 2 replies; 5+ messages in thread
From: Thomas Petazzoni via buildroot @ 2023-11-01 21:36 UTC (permalink / raw)
To: Bernd Kuhls; +Cc: buildroot
On Mon, 16 Oct 2023 20:08:55 +0200
Bernd Kuhls <bernd@kuhls.net> wrote:
> Fixes CVE-2023-5568:
> Heap buffer overflow with freshness tokens in the Heimdal KDC in Samba 4.19
>
> Release notes:
> https://www.samba.org/samba/history/samba-4.19.2.html
>
> Signed-off-by: Bernd Kuhls <bernd@kuhls.net>
> ---
> package/samba4/samba4.hash | 4 ++--
> package/samba4/samba4.mk | 2 +-
> 2 files changed, 3 insertions(+), 3 deletions(-)
Applied to master, thanks.
Thomas
--
Thomas Petazzoni, CTO, Bootlin
Embedded Linux and Kernel engineering
https://bootlin.com
_______________________________________________
buildroot mailing list
buildroot@buildroot.org
https://lists.buildroot.org/mailman/listinfo/buildroot
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: [Buildroot] [PATCH 1/1] package/samba4: security bump version to 4.19.2
2023-11-01 21:36 ` Thomas Petazzoni via buildroot
@ 2023-11-08 12:19 ` Peter Korsgaard
[not found] ` <8734xgtp1w.fsf__14670.3781488881$1699446027$gmane$org@48ers.dk>
1 sibling, 0 replies; 5+ messages in thread
From: Peter Korsgaard @ 2023-11-08 12:19 UTC (permalink / raw)
To: Thomas Petazzoni via buildroot; +Cc: Bernd Kuhls, Thomas Petazzoni
>>>>> "Thomas" == Thomas Petazzoni via buildroot <buildroot@buildroot.org> writes:
> On Mon, 16 Oct 2023 20:08:55 +0200
> Bernd Kuhls <bernd@kuhls.net> wrote:
>> Fixes CVE-2023-5568:
>> Heap buffer overflow with freshness tokens in the Heimdal KDC in Samba 4.19
>>
>> Release notes:
>> https://www.samba.org/samba/history/samba-4.19.2.html
>>
>> Signed-off-by: Bernd Kuhls <bernd@kuhls.net>
>> ---
>> package/samba4/samba4.hash | 4 ++--
>> package/samba4/samba4.mk | 2 +-
>> 2 files changed, 3 insertions(+), 3 deletions(-)
> Applied to master, thanks.
From the looks of it, this only affects 4.19.x and not the 4.18.8 we
have in 2023.02.x / 2023.08.x, right?
--
Bye, Peter Korsgaard
_______________________________________________
buildroot mailing list
buildroot@buildroot.org
https://lists.buildroot.org/mailman/listinfo/buildroot
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: [Buildroot] [PATCH 1/1] package/samba4: security bump version to 4.19.2
[not found] ` <8734xgtp1w.fsf__14670.3781488881$1699446027$gmane$org@48ers.dk>
@ 2023-11-29 21:26 ` Bernd Kuhls
2023-11-30 8:14 ` Peter Korsgaard
0 siblings, 1 reply; 5+ messages in thread
From: Bernd Kuhls @ 2023-11-29 21:26 UTC (permalink / raw)
To: buildroot
Am Wed, 08 Nov 2023 13:19:55 +0100 schrieb Peter Korsgaard:
> From the looks of it, this only affects 4.19.x and not the 4.18.8 we
> have in 2023.02.x / 2023.08.x, right?
Hi Peter,
sorry for answering late, but yes, I think you are right:
https://ubuntu.com/security/CVE-2023-5568
"appears to be 4.19 only"
But 4.18.9 is out now which fixes CVE-2018-14628
https://www.samba.org/samba/history/samba-4.18.9.html
Regards, Bernd
_______________________________________________
buildroot mailing list
buildroot@buildroot.org
https://lists.buildroot.org/mailman/listinfo/buildroot
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: [Buildroot] [PATCH 1/1] package/samba4: security bump version to 4.19.2
2023-11-29 21:26 ` Bernd Kuhls
@ 2023-11-30 8:14 ` Peter Korsgaard
0 siblings, 0 replies; 5+ messages in thread
From: Peter Korsgaard @ 2023-11-30 8:14 UTC (permalink / raw)
To: Bernd Kuhls; +Cc: buildroot
>>>>> "Bernd" == Bernd Kuhls <bernd@kuhls.net> writes:
> Am Wed, 08 Nov 2023 13:19:55 +0100 schrieb Peter Korsgaard:
>> From the looks of it, this only affects 4.19.x and not the 4.18.8 we
>> have in 2023.02.x / 2023.08.x, right?
> Hi Peter,
> sorry for answering late, but yes, I think you are right:
> https://ubuntu.com/security/CVE-2023-5568
> "appears to be 4.19 only"
Ok, good.
> But 4.18.9 is out now which fixes CVE-2018-14628
> https://www.samba.org/samba/history/samba-4.18.9.html
Ok, will you send a bump for that?
--
Bye, Peter Korsgaard
_______________________________________________
buildroot mailing list
buildroot@buildroot.org
https://lists.buildroot.org/mailman/listinfo/buildroot
^ permalink raw reply [flat|nested] 5+ messages in thread
end of thread, other threads:[~2023-11-30 8:25 UTC | newest]
Thread overview: 5+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2023-10-16 18:08 [Buildroot] [PATCH 1/1] package/samba4: security bump version to 4.19.2 Bernd Kuhls
2023-11-01 21:36 ` Thomas Petazzoni via buildroot
2023-11-08 12:19 ` Peter Korsgaard
[not found] ` <8734xgtp1w.fsf__14670.3781488881$1699446027$gmane$org@48ers.dk>
2023-11-29 21:26 ` Bernd Kuhls
2023-11-30 8:14 ` Peter Korsgaard
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.