Summary: | <net-fs/samba-4.13.7: multiple vulnerabilities (CVE-2020-27840, CVE-2021-20277) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | John Helmert III <ajak> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | asturm, samba |
Priority: | Normal | Keywords: | PullRequest |
Version: | unspecified | Flags: | nattka:
sanity-check+
|
Hardware: | All | ||
OS: | Linux | ||
URL: | https://lists.samba.org/archive/samba-announce/2021/000557.html | ||
See Also: | https://github.com/gentoo/gentoo/pull/20939 | ||
Whiteboard: | B3 [glsa+ cve] | ||
Package list: |
net-fs/samba-4.13.7 amd64 arm arm64 ppc ppc64 sparc x86
net-dns/resolv_wrapper-1.1.7 amd64 arm ppc ppc64 sparc x86
sys-libs/ldb-2.2.1 amd64 arm arm64 ppc ppc64 sparc x86
net-libs/socket_wrapper-1.3.2 amd64 arm arm64 ppc ppc64 sparc x86
sys-libs/talloc-2.3.2 amd64 arm arm64 hppa ppc ppc64 sparc x86
|
Runtime testing required: | --- |
Bug Depends on: | 778071 | ||
Bug Blocks: |
Description
John Helmert III
2021-03-24 21:12:26 UTC
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=794ecf10b2db99d01345ed5ec87085da56f8ef89 commit 794ecf10b2db99d01345ed5ec87085da56f8ef89 Author: Lars Wendler <polynomial-c@gentoo.org> AuthorDate: 2021-03-25 08:28:15 +0000 Commit: Lars Wendler <polynomial-c@gentoo.org> CommitDate: 2021-03-25 08:29:29 +0000 net-fs/samba: Security bump to versions 4.12.13, 4.13.7 and 4.14.2 Dropped keywords on alpha and sparc due to sys-libs/libunwind dep Bug: https://bugs.gentoo.org/778026 Closes: https://bugs.gentoo.org/715490 Signed-off-by: Lars Wendler <polynomial-c@gentoo.org> net-fs/samba/Manifest | 3 + net-fs/samba/samba-4.12.14.ebuild | 329 +++++++++++++++++++++++++++++++++++++ net-fs/samba/samba-4.13.7.ebuild | 332 +++++++++++++++++++++++++++++++++++++ net-fs/samba/samba-4.14.2.ebuild | 336 ++++++++++++++++++++++++++++++++++++++ 4 files changed, 1000 insertions(+) We haven't met a decision yet which version to stabilize, so please be patient with us :) (In reply to Lars Wendler (Polynomial-C) from comment #2) > We haven't met a decision yet which version to stabilize, so please be > patient with us :) np Ping Still not sure what to do regarding samba's automagic libunwind dependency and alpha/sparc keywords... Any suggestions? !sparc? ( !alpha? ( sys-libs/libunwind:= ) ) It seems pretty safe to assume these arches won't get libunwind keyworded any time soon. The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=4624c893d68d922a4abb4cbf75cccdaf1bf04d59 commit 4624c893d68d922a4abb4cbf75cccdaf1bf04d59 Author: Lars Wendler <polynomial-c@gentoo.org> AuthorDate: 2021-04-19 11:49:26 +0000 Commit: Lars Wendler <polynomial-c@gentoo.org> CommitDate: 2021-04-19 11:52:06 +0000 net-fs/samba: Restored ~alpha and ~sparc keywords Thanks-to: Andreas Sturmlechner <asturm@gentoo.org> Bug: https://bugs.gentoo.org/778026 Signed-off-by: Lars Wendler <polynomial-c@gentoo.org> net-fs/samba/samba-4.12.14.ebuild | 8 ++++---- net-fs/samba/samba-4.13.7.ebuild | 6 +++--- net-fs/samba/samba-4.14.2.ebuild | 6 +++--- 3 files changed, 10 insertions(+), 10 deletions(-) hppa stable ppc stable ppc64 stable amd64 was stabled by zlogene a while ago x86 done arm done arm64 done sparc done all arches done Please cleanup, thanks! The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=50cdf4f21369dc557d98b45c4aac192a38f8f77a commit 50cdf4f21369dc557d98b45c4aac192a38f8f77a Author: Andreas Sturmlechner <asturm@gentoo.org> AuthorDate: 2021-05-22 19:01:11 +0000 Commit: Lars Wendler <polynomial-c@gentoo.org> CommitDate: 2021-05-22 20:12:08 +0000 net-fs/samba: pre-4.13.7 security cleanup Bug: https://bugs.gentoo.org/778026 Package-Manager: Portage-3.0.18, Repoman-3.0.3 Signed-off-by: Andreas Sturmlechner <asturm@gentoo.org> Signed-off-by: Lars Wendler <polynomial-c@gentoo.org> net-fs/samba/Manifest | 2 - .../samba-4.13-vfs_snapper_configure_option.patch | 56 ---- net-fs/samba/files/samba-4.13-winexe_option.patch | 67 ----- net-fs/samba/files/samba-4.9.2-timespec.patch | 21 -- net-fs/samba/samba-4.12.15.ebuild | 329 --------------------- net-fs/samba/samba-4.12.9-r1.ebuild | 329 --------------------- 6 files changed, 804 deletions(-) Added to an existing GLSA request. This issue was resolved and addressed in GLSA 202105-22 at https://security.gentoo.org/glsa/202105-22 by GLSA coordinator Thomas Deutschmann (whissi). |