Summary: | <net-fs/samba-4.5.15: Multiple vulnerabilities | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | GLSAMaker/CVETool Bot <glsamaker> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | herrtimson, hydrapolic, phmagic |
Priority: | Normal | Flags: | stable-bot:
sanity-check+
|
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://www.samba.org/samba/history/security.html | ||
Whiteboard: | B2 [glsa+ cve] | ||
Package list: |
=net-dns/resolv_wrapper-1.1.5
=net-fs/samba-4.5.15
=sys-libs/ldb-1.1.29-r1
=sys-libs/nss_wrapper-1.1.3
=net-libs/socket_wrapper-1.1.7
=sys-libs/talloc-2.1.9
=sys-libs/tdb-1.3.13
=sys-libs/tevent-0.9.31-r1
=sys-libs/uid_wrapper-1.2.1
|
Runtime testing required: | --- |
Bug Depends on: | 650382 | ||
Bug Blocks: | 588262, 619516 |
Description
GLSAMaker/CVETool Bot
2017-11-28 02:08:54 UTC
@Maintainers version 4.7.3 is already in tree, but in non-stable. Please call for stabilization when ready. Thank you The two security problems were also solved with net-fs/samba-4.5.15 see here: https://www.samba.org/samba/history/samba-4.5.15.html I use this version on a AMD64 system now for a few days without any issues: [ebuild R ~] net-fs/samba-4.5.15::gentoo USE="acl client cups fam ldap pam quota system-mitkrb5 winbind -addc -addns -ads -cluster -dmapi -gnutls -gpg -iprint (-selinux) -syslog (-system-heimdal) -systemd {-test} -zeroconf" ABI_X86="(64) -32 (-x32)" PYTHON_TARGETS="python2_7" 0 KiB So could the stabilization process for net-fs/samba-4.5.15 please be started? (In reply to Frank Krömmelbein from comment #2) > The two security problems were also solved with net-fs/samba-4.5.15 see here: > https://www.samba.org/samba/history/samba-4.5.15.html > > I use this version on a AMD64 system now for a few days without any issues: > [ebuild R ~] net-fs/samba-4.5.15::gentoo USE="acl client cups fam ldap > pam quota system-mitkrb5 winbind -addc -addns -ads -cluster -dmapi -gnutls > -gpg -iprint (-selinux) -syslog (-system-heimdal) -systemd {-test} > -zeroconf" ABI_X86="(64) -32 (-x32)" PYTHON_TARGETS="python2_7" 0 KiB > > > So could the stabilization process for net-fs/samba-4.5.15 please be started? I can too confirm a working 4.5.15 instance on amd64. PING! Arches please stablilize =net-fs/samba-4.5.15 An automated check of this bug failed - repoman reported dependency errors (2 lines truncated):
> dependency.bad net-fs/samba/samba-4.5.15.ebuild: DEPEND: arm(default/linux/arm/13.0) ['>=sys-libs/ldb-1.1.27[ldap(+)?,python(+),abi_x86_32(-)?,abi_x86_64(-)?,abi_x86_x32(-)?,abi_mips_n32(-)?,abi_mips_n64(-)?,abi_mips_o32(-)?,abi_ppc_32(-)?,abi_ppc_64(-)?,abi_s390_32(-)?,abi_s390_64(-)?]', '>=sys-libs/talloc-2.1.8[python,python_targets_python2_7(-)?,-python_single_target_jython2_7(-),-python_single_target_pypy(-),-python_single_target_pypy3(-),-python_single_target_python3_4(-),-python_single_target_python3_5(-),-python_single_target_python3_6(-),python_single_target_python2_7(+),abi_x86_32(-)?,abi_x86_64(-)?,abi_x86_x32(-)?,abi_mips_n32(-)?,abi_mips_n64(-)?,abi_mips_o32(-)?,abi_ppc_32(-)?,abi_ppc_64(-)?,abi_s390_32(-)?,abi_s390_64(-)?]', '>=sys-libs/tdb-1.3.10[python,python_targets_python2_7(-)?,-python_single_target_jython2_7(-),-python_single_target_pypy(-),-python_single_target_pypy3(-),-python_single_target_python3_4(-),-python_single_target_python3_5(-),-python_single_target_python3_6(-),python_single_target_python2_7(+),abi_x86_32(-)?,abi_x86_64(-)?,abi_x86_x32(-)?,abi_mips_n32(-)?,abi_mips_n64(-)?,abi_mips_o32(-)?,abi_ppc_32(-)?,abi_ppc_64(-)?,abi_s390_32(-)?,abi_s390_64(-)?]', '>=sys-libs/tevent-0.9.31-r1[abi_x86_32(-)?,abi_x86_64(-)?,abi_x86_x32(-)?,abi_mips_n32(-)?,abi_mips_n64(-)?,abi_mips_o32(-)?,abi_ppc_32(-)?,abi_ppc_64(-)?,abi_s390_32(-)?,abi_s390_64(-)?]', '>=net-dns/resolv_wrapper-1.1.4', '>=net-libs/socket_wrapper-1.1.7']
> dependency.bad net-fs/samba/samba-4.5.15.ebuild: RDEPEND: arm(default/linux/arm/13.0) ['>=sys-libs/ldb-1.1.27[ldap(+)?,python(+),abi_x86_32(-)?,abi_x86_64(-)?,abi_x86_x32(-)?,abi_mips_n32(-)?,abi_mips_n64(-)?,abi_mips_o32(-)?,abi_ppc_32(-)?,abi_ppc_64(-)?,abi_s390_32(-)?,abi_s390_64(-)?]', '>=sys-libs/talloc-2.1.8[python,python_targets_python2_7(-)?,-python_single_target_jython2_7(-),-python_single_target_pypy(-),-python_single_target_pypy3(-),-python_single_target_python3_4(-),-python_single_target_python3_5(-),-python_single_target_python3_6(-),python_single_target_python2_7(+),abi_x86_32(-)?,abi_x86_64(-)?,abi_x86_x32(-)?,abi_mips_n32(-)?,abi_mips_n64(-)?,abi_mips_o32(-)?,abi_ppc_32(-)?,abi_ppc_64(-)?,abi_s390_32(-)?,abi_s390_64(-)?]', '>=sys-libs/tdb-1.3.10[python,python_targets_python2_7(-)?,-python_single_target_jython2_7(-),-python_single_target_pypy(-),-python_single_target_pypy3(-),-python_single_target_python3_4(-),-python_single_target_python3_5(-),-python_single_target_python3_6(-),python_single_target_python2_7(+),abi_x86_32(-)?,abi_x86_64(-)?,abi_x86_x32(-)?,abi_mips_n32(-)?,abi_mips_n64(-)?,abi_mips_o32(-)?,abi_ppc_32(-)?,abi_ppc_64(-)?,abi_s390_32(-)?,abi_s390_64(-)?]', '>=sys-libs/tevent-0.9.31-r1[abi_x86_32(-)?,abi_x86_64(-)?,abi_x86_x32(-)?,abi_mips_n32(-)?,abi_mips_n64(-)?,abi_mips_o32(-)?,abi_ppc_32(-)?,abi_ppc_64(-)?,abi_s390_32(-)?,abi_s390_64(-)?]']
> dependency.bad net-fs/samba/samba-4.5.15.ebuild: DEPEND: hppa(default/linux/hppa/13.0) ['>=net-dns/resolv_wrapper-1.1.4']
An automated check of this bug succeeded - the previous repoman errors are now resolved. amd64 stable x86 cannot stabilize due to bug 608538. The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=afbdb3ca9a3d841af88e84c3a74e2d4a96fe8020 commit afbdb3ca9a3d841af88e84c3a74e2d4a96fe8020 Author: Lars Wendler <polynomial-c@gentoo.org> AuthorDate: 2018-01-22 10:20:39 +0000 Commit: Lars Wendler <polynomial-c@gentoo.org> CommitDate: 2018-01-22 10:21:00 +0000 net-fs/samba: Restricted tests. They are totally broken. Bug: https://bugs.gentoo.org/639024 Package-Manager: Portage-2.3.20, Repoman-2.3.6 net-fs/samba/samba-4.5.15.ebuild | 16 ++++++++++------ 1 file changed, 10 insertions(+), 6 deletions(-)} x86 stable ia64 stable commit ee21089ac44eb09c5204bde091476190c2e75d9a Author: Rolf Eike Beer <eike@sf-mail.de> Date: Wed Feb 21 09:01:14 2018 +0100 net-fs/samba: stable 4.5.15 for sparc, bug #639024 commit ee21089ac44eb09c5204bde091476190c2e75d9a Author: Rolf Eike Beer <eike@sf-mail.de> Date: Wed Feb 21 09:01:14 2018 +0100 net-fs/samba: stable 4.5.15 for sparc, bug #639024 commit 641b9cdd77c8f4f62e25f283051160c26fc3f477 Author: Tobias Klausmann <klausman@gentoo.org> Date: Fri Mar 2 19:40:20 2018 +0100 net-fs/samba-4.5.15-r0: alpha stable arm64 doesn't have any of this stable, not newstabling for security... ppc stable ppc64 done I don't know what's going on here. hppa doesn't even have keywords and it's not clear why or when they were dropped. arm shouldn't waste its time stabilizing this when a newer stablereq exists (bug 650382). Marking that as a blocker and removing hppa and arm from CC. This issue was resolved and addressed in GLSA 201805-07 at https://security.gentoo.org/glsa/201805-07 by GLSA coordinator Aaron Bauman (b-man). |