Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 896250 - net-fs/samba-4.16.9 version bump
Summary: net-fs/samba-4.16.9 version bump
Status: RESOLVED FIXED
Alias: None
Product: Gentoo Linux
Classification: Unclassified
Component: Current packages (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Gentoo's SAMBA Team
URL:
Whiteboard:
Keywords:
Depends on:
Blocks: CVE-2022-37966, CVE-2022-37967, CVE-2022-38023, CVE-2022-45141
  Show dependency tree
 
Reported: 2023-02-24 11:57 UTC by Joakim Tjernlund
Modified: 2023-03-10 03:50 UTC (History)
2 users (show)

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Joakim Tjernlund 2023-02-24 11:57:19 UTC
see $summary
Comment 1 Krzysztof Olędzki 2023-03-03 05:23:13 UTC
Perhaps should be marked as security issue?

https://www.samba.org/samba/security/CVE-2022-38023.html


Changes since 4.16.8
--------------------

o  Jeremy Allison <jra@samba.org>
   * BUG 14808: smbc_getxattr() return value is incorrect.
   * BUG 15172: Compound SMB2 FLUSH+CLOSE requests from MacOSX are not handled
     correctly.
   * BUG 15210: synthetic_pathref AFP_AfpInfo failed errors.
   * BUG 15226: samba-tool gpo listall fails IPv6 only - finddcs() fails to find
     DC when there is only an AAAA record for the DC in DNS.
   * BUG 15236: smbd crashes if an FSCTL request is done on a stream handle.

o  Ralph Boehme <slow@samba.org>
   * BUG 15299: Spotlight doesn't work with latest macOS Ventura.

o  Samuel Cabrero <scabrero@suse.de>
   * BUG 15240: CVE-2022-38023 [SECURITY] Samba should refuse RC4 (aka md5)
     based SChannel on NETLOGON.

o  Volker Lendecke <vl@samba.org>
   * BUG 15243: %U for include directive doesn't work for share listing
     (netshareenum).
   * BUG 15266: Shares missing from netshareenum response in samba 4.17.4.
   * BUG 15269: ctdb: use-after-free in run_proc.

o  Stefan Metzmacher <metze@samba.org>
   * BUG 15243: %U for include directive doesn't work for share listing
     (netshareenum).
   * BUG 15266: Shares missing from netshareenum response in samba 4.17.4.
   * BUG 15280: irpc_destructor may crash during shutdown.
   * BUG 15286: auth3_generate_session_info_pac leaks wbcAuthUserInfo.

o  Andreas Schneider <asn@samba.org>
   * BUG 15268: smbclient segfaults with use after free on an optimized build.

o  Andrew Walker <awalker@ixsystems.com>
   * BUG 15164: Leak in wbcCtxPingDc2.
   * BUG 15265: Access based share enum does not work in Samba 4.16+.
   * BUG 15267: Crash during share enumeration.
   * BUG 15271: rep_listxattr on FreeBSD does not properly check for reads off
     end of returned buffer.
Comment 2 Larry the Git Cow gentoo-dev 2023-03-09 13:49:04 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=fed89824dacfff4715764fbf8288f0e99474da0c

commit fed89824dacfff4715764fbf8288f0e99474da0c
Author:     Ben Kohler <bkohler@gentoo.org>
AuthorDate: 2023-03-08 21:36:51 +0000
Commit:     Ben Kohler <bkohler@gentoo.org>
CommitDate: 2023-03-09 13:48:46 +0000

    net-fs/samba: add 4.16.9
    
    Bug: https://bugs.gentoo.org/896250
    
    Signed-off-by: Ben Kohler <bkohler@gentoo.org>

 net-fs/samba/Manifest            |   1 +
 net-fs/samba/samba-4.16.9.ebuild | 368 +++++++++++++++++++++++++++++++++++++++
 2 files changed, 369 insertions(+)
Comment 3 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2023-03-10 03:50:07 UTC
CVE handled in bug 886153.