package/samba4: security bump to vesion 4.9.15

Fixes the following security issues: - CVE-2019-10218: Malicious servers can cause Samba client code to return filenames containing path separators to calling code. - CVE-2019-14833: When the password contains multi-byte (non-ASCII) characters, the check password script does not receive the full password string. - CVE-2019-14847: Users with the "get changes" extended access right can crash the AD DC LDAP server by requesting an attribute using the range= syntax. Release notes: https://www.samba.org/samba/history/samba-4.9.15.html Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2019-10-31 21:52:05 +01:00 · 2019-10-31 21:52:05 +01:00 · 064b224eb0
commit 064b224eb0
parent 33ada3a609
2 changed files with 3 additions and 3 deletions
--- a/package/samba4/samba4.hash
+++ b/package/samba4/samba4.hash
@ -1,4 +1,4 @@
 # Locally calculated after checking pgp signature
-# https://download.samba.org/pub/samba/stable/samba-4.9.13.tar.asc
-sha256 ab18331e37766b13dbb07d1f115bda3d794917baf502d0ca2b2b8fff014b88f2  samba-4.9.13.tar.gz
+# https://download.samba.org/pub/samba/stable/samba-4.9.15.tar.asc
+sha256 377102b80b97941bf0d131b828cae8415190e5bdd2928c2e2c954e29f1904496  samba-4.9.15.tar.gz
 sha256 8ceb4b9ee5adedde47b31e975c1d90c73ad27b6b165a1dcd80c7c545eb65b903  COPYING
--- a/package/samba4/samba4.mk
+++ b/package/samba4/samba4.mk
@ -4,7 +4,7 @@
 #
 ################################################################################

-SAMBA4_VERSION = 4.9.13
+SAMBA4_VERSION = 4.9.15
 SAMBA4_SITE = https://download.samba.org/pub/samba/stable
 SAMBA4_SOURCE = samba-$(SAMBA4_VERSION).tar.gz
 SAMBA4_INSTALL_STAGING = YES