kumquat-buildroot/package/samba4
Bernd Kuhls 83651e1833 package/samba4: security bump version to 4.18.5
Release notes: https://www.samba.org/samba/history/samba-4.18.5.html

Fixes the following CVEs:

o CVE-2022-2127:
When winbind is used for NTLM authentication, a maliciously
crafted request can trigger an out-of-bounds read in winbind
and possibly crash it.
https://www.samba.org/samba/security/CVE-2022-2127.html

o CVE-2023-3347:
SMB2 packet signing is not enforced if an admin configured
"server signing = required" or for SMB2 connections to Domain
Controllers where SMB2 packet signing is mandatory.
https://www.samba.org/samba/security/CVE-2023-3347.html

o CVE-2023-34966:
An infinite loop bug in Samba's mdssvc RPC service for
Spotlight can be triggered by an unauthenticated attacker by
issuing a malformed RPC request.
https://www.samba.org/samba/security/CVE-2023-34966.html

o CVE-2023-34967:
Missing type validation in Samba's mdssvc RPC service for
Spotlight can be used by an unauthenticated attacker to
trigger a process crash in a shared RPC mdssvc worker process.
https://www.samba.org/samba/security/CVE-2023-34967.html

o CVE-2023-34968:
As part of the Spotlight protocol Samba discloses the server-
side absolute path of shares and files and directories in
search results.
https://www.samba.org/samba/security/CVE-2023-34968.html

Signed-off-by: Bernd Kuhls <bernd@kuhls.net>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2023-07-20 23:28:56 +02:00
..
0001-libreplace-disable-libbsd-support.patch
0002-build-find-pre-built-heimdal-build-tools-in-case-of-.patch
0003-ldap_message_test.c-include-stdint.h-before-cmoka.h.patch
0004-3rdparty-heindal-Use-perl-module-JSON-part-of-core-i.patch
Config.in
S91smb
samba4-cache.txt
samba4.hash package/samba4: security bump version to 4.18.5 2023-07-20 23:28:56 +02:00
samba4.mk package/samba4: security bump version to 4.18.5 2023-07-20 23:28:56 +02:00