summaryrefslogtreecommitdiff
path: root/net/samba
AgeCommit message (Collapse)AuthorFilesLines
2012-07-06Update to Samba 3.6.6asau4-35/+131
============================= Release Notes for Samba 3.6.6 June 25, 2012 ============================= This is is the latest stable release of Samba 3.6. Major enhancements in Samba 3.6.6 include: o Fix possible memory leaks in the Samba master process (bug #8970). o Fix uninitialized memory read in talloc_free(). o Fix joining of XP Pro workstations to 3.6 DCs (bug #8373). Changes since 3.6.5: -------------------- o Michael Adam <obnox@samba.org> * BUG 8738: SMB2 server will not release unused shares. * BUG 8749: Sign non guest sessions in SessionSetup. * BUG 8921: Fix race writing registry values. o Jeremy Allison <jra@samba.org> * BUG 8373: Fix joining of XP Pro workstations to 3.6 DCs. * BUG 8627: Fix crash bug in dns_create_probe when dns_create_update fails. * BUG 8723: Add pthread-based aio VFS module. * BUG 8784: When calculating the share security mask, take priviliges into account for the connecting user. * BUG 8811: sd_has_inheritable_components segfaults on an SD that se_access_check accepts. * BUG 8837: Fix crash in smbd when deleting directory and veto files are enabled. * BUG 8857: Setting traverse rights fails to enable directory traversal when acl_xattr in use. * BUG 8882: Broken processing of %U with vfs_full_audit when force user is set. * BUG 8897: Make winbind_krb5_locator not only returning one IP address. * BUG 8910: resolve_ads() code can return zero addresses and miss valid DC IP addresses. * BUG 8922: smbclient's tarmode insists on listing excluded directories. * BUG 8953: Winbind can hang as nbt_getdc() has no timeout. * BUG 8957: Typo in pam_winbindd code MUST fix. * BUG 8970: Fix possible memory leaks in the Samba master process. * BUG 8971: cleanup_timeout_fn() is called too often, on exiting when an smbd is idle. * BUG 8972: Directory group write permission bit is set if unix extensions are enabled. o Christian Ambach <ambi@samba.org> * BUG 8406: Fix a return code check in Winbind. * BUG 8807: Fix crash in dcerpc_lsa_lookup_sids_noalloc() crashes when groups has more than 1000 groups. o Andrew Bartlett <abartlet@samba.org> * BUG 8599: Only use SamLogonEx when we can get unencrypted session keys. * BUG 8727: Fix smbclients with posix large reads. * BUG 8943: Slow but responsive DC can lock up Winbind for > 10 minutes at a time. o Björn Baumbach <bb@sernet.de> * BUG 7564: Fix default name resolve order in the manpage. * BUG 8554, 8612, 8748: Add new printers to registry. * BUG 8789: Remove whitespace in example samba.ldif. o Alexander Bokovoy <ab@samba.org> * BUG 8988: Avoid crash with MIT krb5 1.10.0 in gss_get_name_attribute(). o Alejandro Escanero Blanco <aescanero@gmail.com> * BUG 8798: The primary rid should be in the groups rid array. o Ira Cooper <samba@ira.wakeful.net> * BUG 8729: Fix getpass regressions on Solaris/Illumos. * BUG 8743: Fix configure.developer builds on Solaris. * BUG 8910: Fix bad bugfix for bug #8910. * BUG 8952: Fix negative SID->uid/gid cache handling. * BUG 8995: Use fsp_persistent_id() as persistent_file_id part for SMB2. o David Disseldorp <ddiss@samba.org> * BUG 8762: Fix crash in printer_list_set_printer(). o Olaf Flebbe <o.flebbe@science-computing.de> * BUG 8859: Fix assertion in reg_parse. o Björn Jacke <bj@sernet.de> * BUG 8732: Fix compile of krb5 locator on Solaris. * BUG 8869: Remove outdated netscape ds 5 schema file. * BUG 8978: Remove dependency on automake for 'make everything'. o Steve Langasek <steve.langasek@ubuntu.com> * BUG 8920: Fix null dereference in pdb_interface. o Volker Lendecke <vl@samba.org> * Fix uninitialized memory read in talloc_free(). * BUG 8567: Fix segfault in dom_sid_compare. * BUG 8733: Delete streams on directories (streams_depot). * BUG 8760: Add SERVERID_UNIQUE_ID_NOT_TO_VERIFY. * BUG 8836: Fix segfaults on "smbcontrol close-share" in aio_fork. * BUG 8861: Fix a segfault with debug level 3 on Solaris. * BUG 8904: Fix Winbind crash triggered by 'wbinfo --lookup-sids ""'. * BUG 8998: Notify code can miss a ChDir. o Stefan Metzmacher <metze@samba.org> * BUG 8139: Ignore SMBecho errors (the server may not support it). * BUG 8527: db_ctdb_traverse fails to traverse records created within the current transaction. * BUG 8311: Winzip occasionally can not read files out of an open winzip dialog. * BUG 8739: Fill the sids array of the info in wbcAuthUserInfo_to_netr_SamInfo3(). * BUG 8749: Sign non guest sessions in SessionSetup. * BUG 8995: Use fsp_persistent_id() as persistent_file_id part for SMB2. o Matthieu Patou <mat@matws.net> * BUG 8599: Set the can_do_validation6 also for trusted domain. * BUG 8714: Catch with pid filename's change when config file is not smb.conf. * BUG 8734: Don't try to do clever thing if the username is not found while authenticating through Winbind. * BUG 8771: Winbind takes up to 20 minutes to change from DC 1 to DC 2. * BUG 8975: Call dump_core_setup after command line option has been parsed. o SATOH Fumiyasu <fumiyas@osstech.co.jp> * BUG 8826: Prepend '/' to filename argument (docs). o Andreas Schneider <asn@samba.org> * BUG 8944 and 8567: Don't lookup the system user in pdb. o Richard Sharpe <realrichardsharpe@gmail.com> * BUG 8768: Honor SeTakeOwnershipPrivilege when file opened with SEC_STD_WRITE_OWNER. * BUG 8797: Correctly handle DENY ACEs when privileges apply. * BUG 8822: Fix building out-of-tree modules. * BUG 8945: vfs_acl_common discards errors from writing to the underlying storage. * BUG 8970: Fix possible memory leaks in the Samba master process. o Simo Sorce <idra@samba.org> * BUG 8915: Fix pam_winbind build against newer iniparser library. o Joseph Tam <jtam.home@gmail.com> * BUG 8877: Syslog broken owing to mistyping of debug_settings.syslog. o Ralph Wuerthner <ralph.wuerthner@de.ibm.com> * BUG 8845: Move print_backend_init() behind init_system_info().
2012-05-02Update samba to 3.6.5.taca2-6/+6
============================= Release Notes for Samba 3.6.5 April 30, 2012 ============================= This is a security release in order to address CVE-2012-2111 (Incorrect permission checks when granting/removing privileges can compromise file server security). o CVE-2012-2111: Samba 3.4.x to 3.6.4 are affected by a vulnerability that allows arbitrary users to modify privileges on a file server.
2012-04-26Add PLIST.SunOS.hans1-0/+3
2012-04-11Update to Samba 3.6.4asau2-7/+6
This is a security release in order to address CVE-2012-1182 ("root" credential remote code execution). o CVE-2012-1182: Samba 3.0.x to 3.6.3 are affected by a vulnerability that allows remote code execution as the "root" user. Changes since 3.6.3: -------------------- o Stefan Metzmacher <metze@samba.org> *BUG 8815: PIDL based autogenerated code allows overwriting beyond of allocated array (CVE-2012-1182).
2012-02-06Revbump forwiz1-2/+2
a) tiff update to 4.0 (shlib major change) b) glib2 update 2.30.2 (adds libffi dependency to buildlink3.mk) Enjoy.
2012-02-01nss module install fix-ups.sbd4-14/+8
1) Correct the path to the nsswitch directory in the samba-nss-winbind-install and samba-nss-wins-install targets so they work again. 2) Switch back to using the the above mentioned targets for installing nss-winbind and nss_wins. (These targets work on all platforms.) 3) Switch back to using ${NSS_WINBIND} and ${NSS_WINS} in the PLIST as these work on all platforms. Bump PKGREVISION
2012-01-31Add missing zlib buildlink and on Linux only uuid buildlink.sbd1-2/+6
Bump PKGREVISION.
2012-01-31Fix the $NetBSD$ tagsbd1-1/+1
2012-01-31Add PLIST.Linuxsbd2-2/+6
2012-01-30Third time's the charm:tron3-10/+19
Replace patch for SMBecho compatibility problem with patch provided by the Samba maintainers. Successfully tested with an Apple Time Capsule.
2012-01-30Fix botch in last patch which meant that we were ignoring almost alltron3-6/+6
errors in response to SMB echo packets. The new fix doesn't look particular nice but should at least do The Right Thing(TM).
2012-01-30Moved NetBSD files into PLIST.NetBSD; fixed couple pkglint issuesadam5-15/+16
2012-01-30Restore compatibility of "smbclient" with CIFS server on thetron3-2/+22
Apple Time Capsule.
2012-01-30Remove patch-al, its not actually a patch just a file with the wordssbd2-3/+1
"Changes were applied."
2012-01-29Revert accidently commited my trial local change.taca1-3/+3
2012-01-29Update samba package to 3.6.3. Quote from release notes:taca3-9/+9
Samba 3.6.3: This is a security release in order to address CVE-2012-0817 (Memory leak/Denial of service). o CVE-2012-0817: The Samba File Serving daemon (smbd) in Samba versions 3.6.0 to 3.6.2 is affected by a memory leak that can cause a server denial of service. Samba 3.6.2: Major enhancements in Samba 3.6.2 include: o Make Winbind receive user/group information (bug #8371). o Several SMB2 fixes. For complete changes, please refer http://www.samba.org/samba/history/samba-3.6.2.html and http://www.samba.org/samba/history/samba-3.6.3.html.
2012-01-17Convert packages with add --libdir=* to CONFIGURE_ARGS to usesbd1-2/+2
GNU_CONFIGURE_LIBDIR or GNU_CONFIGURE_LIBSUBDIR.
2011-12-19mount.cifs and umount.cifs were removed along with configure option.asau2-11/+3
This fixes packaging and installation on Linux.
2011-12-16Update to Samba 3.6.1asau10-147/+110
Major enhancements in Samba 3.6.1 include: o Fix smbd crashes triggered by Windows XP clients (bug #8384). o Fix a Winbind race leading to 100% CPU load (bug #8409). o Several SMB2 fixes. o The VFS ACL modules are no longer experimental but production-ready. Full release notes at http://www.samba.org/samba/history/samba-3.6.1.html Major enhancements in Samba 3.6.0 include: - Changed security defaults: client ntlmv2 auth = yes client use spnego principal = no send spnego principal = no - SMB2 support (fully functional with one omission) - Internal Winbind passdb changes - New Spoolss code - ID Mapping Changes - Endpoint Mapper - Internal restructuring - SMB Traffic Analyzer (http://holger123.wordpress.com/smb-traffic-analyzer/) - NFS quota backend on Linux Full release notes at http://www.samba.org/samba/history/samba-3.6.0.html
2011-12-16Remove accidentaly resurrected patches.asau2-26/+0
2011-12-16Update to Samba 3.5.11 from net/samba35, part of Samba packages rearrangement.asau56-1797/+941
2011-08-02Add workaround for NetBSD 5.99.54 as samba35.taca2-1/+16
2011-07-27Try to fix build problem with recent kerberos5 header?taca2-1/+17
The problem was noted by Paul Goyette on pkgsrc-users@.
2011-04-23Fix build with the latest version of Heimdal under NetBSD/current.tron1-1/+6
2011-04-22recursive bump from gettext-lib shlib bump.obache1-2/+2
2011-01-27smbd does not require nmbd to runadam1-3/+1
2011-01-13png shlib name changed for png>=1.5.0, so bump PKGREVISIONs.wiz1-2/+2
2010-12-06Seems like Darwin also supports ACLsadam1-2/+2
2010-12-03add ads, ldap, pam, and winbind to default pkg optionsjmcneill2-3/+4
bump pkg revision
2010-06-19Add a patch to fix CVE-2010-2063.taca4-5/+48
Bump PKGREVISION.
2010-04-15Bump PKGREVISION due to removing -B flag from winbindd rc.d scriptsborrill1-2/+2
2010-04-15winbindd does not have a -B flag. As far as I can see, it never did havesborrill1-2/+1
(It was added to this rc.d script as part of the upgrade to 3.0.20b, but winbindd in 3.0.20b does not have a -B flag).
2010-04-14Add openssl bl3.mk file so that we play nicely with PREFER_PKGSRC+=opensslsborrill1-1/+2
2010-03-08Disable PIE on NetBSD/macppc to fix use of unsupported relocation type in.jmmv2-2/+10
Samba 3.0 and 3.3. They were completely broken before this. Bump PKGREVISION for both samba and samba33. Fix from PR pkg/38961 by Makoto Fujiwara <makoto at ki dot nu>.
2010-02-09let the "wide links" option default to "false", as a preliminarydrochner3-5/+15
response to the recent symlink attack problem approved by Takahiro Kambe bump PKGREVISION
2009-10-11Remove master site that does not resolve.wiz1-2/+1
2009-10-04Update samba package to 3.0.37.taca11-69/+82
This is a security release in order to address CVE-2009-2813, CVE-2009-2948 and CVE-2009-2906. Please note that Samba 3.0 is not maintained any longer. This security release is shipped on a voluntary basis. o CVE-2009-2813: In all versions of Samba later than 3.0.11, connecting to the home share of a user will use the root of the filesystem as the home directory if this user is misconfigured to have an empty home directory in /etc/passwd. o CVE-2009-2948: If mount.cifs is installed as a setuid program, a user can pass it a credential or password path to which he or she does not have access and then use the --verbose option to view the first line of that file. o CVE-2009-2906: Specially crafted SMB requests on authenticated SMB connections can send smbd into a 100% CPU loop, causing a DoS on the Samba server.
2009-09-09Switch to using popt from pkgsrc instead of internal version.wiz1-3/+3
Requested in PR 34444 and by David A. Holland. Bump PKGREVISION.
2009-09-09Conditionalise on NSS_INFO_MODULES further, fixes Solaris build. Changesketch2-7/+18
double-negative test to a positive one.
2009-08-26bump revision because of graphics/jpeg updatesno1-1/+2
2009-08-16Update to 3.0.36:wiz3-8/+7
Please note, that the 3.0 series will be DISCONTINUED after this release! There will be neither any bugfix release nor any security release. Updating to the latest release series is strongly recommended. For more information on current Samba releases, please see Major enhancements included in Samba 3.0.36 are: o Fix Winbind crash on 'getent group' (bug #5906). o Excel save operation corrupts file ACLs (bug #4308). o Prevent segmentation fault on joining a very long domain name.
2009-07-08Update "samba" package to version 3.0.35. Changes since version 3.0.34:tron5-120/+84
- CVE-2009-1888: In Samba 3.0.31 to 3.3.5 (inclusive), an uninitialized read of a data value can potentially affect access control when "dos filemode" is set to "yes". This security fix has already been integrated into "pkggsrc" via a patch previously. The package was only updated to make future maintenance easier.
2009-06-23add a patch from upstream:drochner3-3/+17
CVE-2009-1888: In Samba 3.0.31 to 3.3.5 (inclusive), an uninitialized read of a data value can potentially affect access control when "dos filemode" is set to "yes". bump PKGREVISION
2009-06-14Remove @dirrm entries from PLISTsjoerg1-27/+1
2009-05-20Recursive ABI depends update and PKGREVISION bump for readline-6.0 shlibwiz2-2/+4
major change. Reported by Robert Elz in PR 41345.
2009-03-21Update "samba" package to version 3.0.34. Changes since version 3.0.32:tron7-62/+226
- Fix update of machine account passwords. - Fix SMB signing issue on Windows Vista with MS Hotfix KB955302. - Fix Winbind crashes. - Correctly detect if the current dc is the closest one. - Add saf_join_store() function to memorize the dc used at join time. This avoids problems caused by replication delays shortly after domain joins. - Fix write list in setups using "security = share".
2009-03-20Simply and speed up buildlink3.mk files and processing.joerg1-13/+6
This changes the buildlink3.mk files to use an include guard for the recursive include. The use of BUILDLINK_DEPTH, BUILDLINK_DEPENDS, BUILDLINK_PACKAGES and BUILDLINK_ORDER is handled by a single new variable BUILDLINK_TREE. Each buildlink3.mk file adds a pair of enter/exit marker, which can be used to reconstruct the tree and to determine first level includes. Avoiding := for large variables (BUILDLINK_ORDER) speeds up parse time as += has linear complexity. The include guard reduces system time by avoiding reading files over and over again. For complex packages this reduces both %user and %sys time to half of the former time.
2009-03-03Rework detection of getifaddrs() code so that it precedes the AIX method assborrill4-41/+54
AIX method was being chosen in preference (on NetBSD 5.0 at least). This broke net and rpcclient, etc. as they failed to enumerate interfaces correctly.
2009-02-03Samba embeds lots of debug info into shipped binaries; one is an explicituebayasi1-1/+2
source directory source/smbd/build_options.c and __FILE__ lines in DEBUG(). Give up wrkref checks here.
2008-11-28Add samba-3.0.32-CVE-2008-4314.patch.taca3-4/+9
http://www.samba.org/samba/security/CVE-2008-4314.html Bump PKGREVISION.
generated by cgit v1.2.3 (git 2.39.1) at 2024-08-30 02:32:53 +0000