samba4: updated to 4.10.2

Release Notes for Samba 4.10.2

This is a security release in order to address the following defects:
o  CVE-2019-3870 (World writable files in Samba AD DC private/ dir)
o  CVE-2019-3880 (Save registry file outside share as unprivileged user)

Details

o  CVE-2019-3870:
   During the provision of a new Active Directory DC, some files in the private/
   directory are created world-writable.

o  CVE-2019-3880:
   Authenticated users with write permission can trigger a symlink traversal to
   write or detect files outside the Samba share.

For more details and workarounds, please refer to the security advisories.

Changes since 4.10.1:
* BUG 13834: CVE-2019-3870: pysmbd: Ensure a zero umask is set for
  smbd.mkdir().
* BUG 13851: CVE-2018-14629: rpc: winreg: Remove implementations of
  SaveKey/RestoreKey.

3 files changed, 9 insertions, 8 deletions

diff --git a/net/samba4/Makefile b/net/samba4/Makefile
index a7ca5398880..61fa0754135 100644
--- a/net/samba4/Makefile
+++ b/net/samba4/Makefile
@@ -1,6 +1,6 @@
-# $NetBSD: Makefile,v 1.64 2019/04/03 14:23:06 adam Exp $
+# $NetBSD: Makefile,v 1.65 2019/04/08 18:35:58 adam Exp $
 
-DISTNAME=	samba-4.10.1
+DISTNAME=	samba-4.10.2
 CATEGORIES=	net
 MASTER_SITES=	http://download.samba.org/pub/samba/stable/
 
diff --git a/net/samba4/PLIST b/net/samba4/PLIST
index 38e3d8f11f3..c0bb81f94ab 100644
--- a/net/samba4/PLIST
+++ b/net/samba4/PLIST
@@ -1,4 +1,4 @@
-@comment $NetBSD: PLIST,v 1.21 2019/03/20 19:09:10 adam Exp $
+@comment $NetBSD: PLIST,v 1.22 2019/04/08 18:35:58 adam Exp $
 bin/cifsdd
 bin/dbwrap_tool
 bin/dumpmscat
@@ -514,6 +514,7 @@ ${PYSITELIB}/samba/tests/samdb.py
 ${PYSITELIB}/samba/tests/samdb_api.py
 ${PYSITELIB}/samba/tests/security.py
 ${PYSITELIB}/samba/tests/smb.py
+${PYSITELIB}/samba/tests/smbd_base.py
 ${PYSITELIB}/samba/tests/source.py
 ${PYSITELIB}/samba/tests/strings.py
 ${PYSITELIB}/samba/tests/subunitrun.py
diff --git a/net/samba4/distinfo b/net/samba4/distinfo
index 9c62be628fb..a1281aeaa5e 100644
--- a/net/samba4/distinfo
+++ b/net/samba4/distinfo
@@ -1,9 +1,9 @@
-$NetBSD: distinfo,v 1.26 2019/04/03 14:23:06 adam Exp $
+$NetBSD: distinfo,v 1.27 2019/04/08 18:35:59 adam Exp $
 
-SHA1 (samba-4.10.1.tar.gz) = 4dc043bd680ac625a54bbe94e4df85ac3598359c
-RMD160 (samba-4.10.1.tar.gz) = d1bb83f5acc18ec2399beae32a2ceba010f1f6cc
-SHA512 (samba-4.10.1.tar.gz) = cfd86999d2eacb7700f03a25112211f4c79f64685d758744f690046728b5f5d66e4699d6cc9dc3e1ae108eb630ed18d9f62791ca101daabcebafa3cca2b3d838
-Size (samba-4.10.1.tar.gz) = 18280677 bytes
+SHA1 (samba-4.10.2.tar.gz) = b0b5dd49e92b266315cea6530dcfc926f27dd4ed
+RMD160 (samba-4.10.2.tar.gz) = 6d91d2d581e095753deaae1fae28b8a048e103fc
+SHA512 (samba-4.10.2.tar.gz) = 3d146ea12567ebb02a7babcad779b82339ffbfb19f6f2be5cac33eb18af2c9b546dc1cd910072a5c9e152ba9c4a632ed6870c48a8f6ad9d04304b130f240a4bf
+Size (samba-4.10.2.tar.gz) = 18280710 bytes
 SHA1 (patch-buildtools_wafsamba_samba__conftests.py) = 0f9ca14e3a77d7dfad06aa8c4d2de2f6cc3c0646
 SHA1 (patch-buildtools_wafsamba_samba__install.py) = d801340617da325e3bb70a90350e45cc8e383c2d
 SHA1 (patch-buildtools_wafsamba_samba__pidl.py) = a7cc41a55ce032c3fe1e0b660f88fa7871710e0e