From 46847d6e3e34e63d361a20e71e51e28330fcc472 Mon Sep 17 00:00:00 2001 From: sbd Date: Thu, 3 Mar 2011 07:26:41 +0000 Subject: Pullup ticket #3368 - requested by taca net/samba35 security fix. Revisions pulled up: - net/samba35/Makefile 1.2 - net/samba35/distinfo 1.2 --- Module Name: pkgsrc Committed By: taca Date: Mon Feb 28 14:34:56 UTC 2011 Modified Files: pkgsrc/net/samba35: Makefile distinfo Log Message: Update samba35 pacakge to 3.5.7. Release Announcements ===================== Samba 3.5.7, 3.4.12 and 3.3.15 are security releases in order to address CVE-2011-0719. o CVE-2011-0719: All current released versions of Samba are vulnerable to a denial of service caused by memory corruption. Range checks on file descriptors being used in the FD_SET macro were not present allowing stack corruption. This can cause the Samba code to crash or to loop attempting to select on a bad file descriptor set. A connection to a file share, or a local account is needed to exploit this problem, either authenticated or unauthenticated (guest connection). Currently we do not believe this flaw is exploitable beyond a crash or causing the code to loop, but on the advice of our security reviewers we are releasing fixes in case an exploit is discovered at a later date. Changes ------- o Jeremy Allison * BUG 7949: Fix DoS in Winbind and smbd with many file descriptors open. --- net/samba35/Makefile | 4 ++-- net/samba35/distinfo | 8 ++++---- 2 files changed, 6 insertions(+), 6 deletions(-) diff --git a/net/samba35/Makefile b/net/samba35/Makefile index 6c0e2b4ae3d..bb8bf0ed825 100644 --- a/net/samba35/Makefile +++ b/net/samba35/Makefile @@ -1,4 +1,4 @@ -# $NetBSD: Makefile,v 1.1.1.1.2.1 2011/03/02 16:01:09 spz Exp $ +# $NetBSD: Makefile,v 1.1.1.1.2.2 2011/03/03 07:26:41 sbd Exp $ .include "../../net/samba/Makefile.mirrors" @@ -11,7 +11,7 @@ HOMEPAGE= http://www.samba.org/ COMMENT= SMB/CIFS protocol server suite LICENSE= gnu-gpl-v3 -VERSION= 3.5.6 +VERSION= 3.5.7 CONFLICTS+= ja-samba-[0-9]* pam-smbpass-[0-9]* tdb-[0-9]* winbind-[0-9]* PKG_DESTDIR_SUPPORT= user-destdir diff --git a/net/samba35/distinfo b/net/samba35/distinfo index 11da61134d9..656d83f13df 100644 --- a/net/samba35/distinfo +++ b/net/samba35/distinfo @@ -1,8 +1,8 @@ -$NetBSD: distinfo,v 1.1.1.1 2010/12/06 17:01:22 adam Exp $ +$NetBSD: distinfo,v 1.1.1.1.2.1 2011/03/03 07:26:41 sbd Exp $ -SHA1 (samba-3.5.6.tar.gz) = 5eb31e8d542d5b65867cfa5290f97783ea4628d3 -RMD160 (samba-3.5.6.tar.gz) = 0993c0ac080fd873860e176f3efe0ba07d1e99e1 -Size (samba-3.5.6.tar.gz) = 30803319 bytes +SHA1 (samba-3.5.7.tar.gz) = 335c6e97858f0a6db5559a398c980df39a5f6f7c +RMD160 (samba-3.5.7.tar.gz) = f903a40aeffffa0ca142cfce3bb4ecced5c0bc29 +Size (samba-3.5.7.tar.gz) = 30815040 bytes SHA1 (patch-aa) = 7a007f347752782a0a60468d3dcb1ac37065445a SHA1 (patch-ab) = 0372ff2e3caca866dacd6ed25ae1d02e34a5b567 SHA1 (patch-ac) = 5b1c0fdb781cb75f81af71ed2695144d4a35e032 -- cgit v1.2.3