Back to samba PTS page

Accepted samba 2:4.17.7+dfsg-1 (source) into unstable

To: debian-devel-changes@lists.debian.org
Subject: Accepted samba 2:4.17.7+dfsg-1 (source) into unstable
From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
Date: Wed, 29 Mar 2023 16:05:41 +0000
Debian: DAK
Debian-architecture: source
Debian-archive-action: accept
Debian-changes: samba_4.17.7+dfsg-1_source.changes
Debian-source: samba
Debian-suite: unstable
Debian-version: 2:4.17.7+dfsg-1
Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=ftp-master.debian.org; s=smtpauto.fasolo; h=Date:Message-Id: Content-Transfer-Encoding:Content-Type:Subject:MIME-Version:To:Reply-To:From: Cc:Content-ID:Content-Description:In-Reply-To:References; bh=yz1D+wovMHSVXz8hp2I3MKlH18Bmsn/9TfJzUmbOvNs=; b=nJDs0lTU/XbVZQJYrcShtNuzwq UPLh6cbsPQ4JL8WNbJpzEV6F+/NX+5Q5rdlhb1f054LMYAK1AFmqKroZgxTEjao3xDu6Hl68axh6L 6YNPInAieZ3I2UxatCOciXLxeaeYfiP/3N1+KaJqX82E8loG14U2Gz5O/4p6cZ415uJFaE03ZwMDY EHuZlgra9T47QXDslXt68eCD32ILpkGkcT6AXTOjiLUZqFE3dcbChEd1EK3ZI7IooaeqMnjXXY13E C93Bk9IXLJJ561Ygt5fSV9x3GYuOwchn3ZhD3hdtCZnueUGYrOiqbeQVag5ec97lANBEmj7v9189E 37tUAqgg==;
Mail-followup-to: debian-devel@lists.debian.org
Message-id: <E1phYIv-002nep-OY@fasolo.debian.org>
Reply-to: debian-devel@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 29 Mar 2023 17:59:17 +0300
Source: samba
Architecture: source
Version: 2:4.17.7+dfsg-1
Distribution: unstable
Urgency: high
Maintainer: Debian Samba Maintainers <pkg-samba-maint@lists.alioth.debian.org>
Changed-By: Michael Tokarev <mjt@tls.msk.ru>
Changes:
 samba (2:4.17.7+dfsg-1) unstable; urgency=high
 .
   * upstream stable/security/bugfix release, fixing the following issues:
     o CVE-2023-0225: An incomplete access check on dnsHostName allows
       authenticated but otherwise unprivileged users to delete this
       attribute from any object in the directory.
       https://www.samba.org/samba/security/CVE-2023-0225.html
     o CVE-2023-0922: The Samba AD DC administration tool, when operating
       against a remote LDAP server, will by default send new or reset
       passwords over a signed-only connection.
       https://www.samba.org/samba/security/CVE-2023-0922.html
     o CVE-2023-0614: Fix in 4.6.16, 4.7.9, 4.8.4 and 4.9.7 for CVE-2018-10919
       Confidential attribute disclosure via LDAP filters was insufficient and
       an attacker may be able to obtain confidential BitLocker recovery keys
       from a Samba AD DC.  Installations with such secrets in their Samba AD
       should assume they have been obtained and need replacing.
       https://www.samba.org/samba/security/CVE-2023-0614.html
     Closes: CVE-2023-0225 CVE-2023-0922 CVE-2023-0614
   * update libldb symbols and versions
Checksums-Sha1:
 16019603bb68c5cd7269f58d48b49a281a6220f1 4398 samba_4.17.7+dfsg-1.dsc
 f05b964cbf90b51e7bc3f256be38744d2c4c4768 18433248 samba_4.17.7+dfsg.orig.tar.xz
 73f216239de818b95aed1bbf3c1f852e6e2cba9f 269312 samba_4.17.7+dfsg-1.debian.tar.xz
 bec5803616a7eaba866a2528760d1bca347a7a26 5959 samba_4.17.7+dfsg-1_source.buildinfo
Checksums-Sha256:
 d47500dca72084d64a766fec41a867ea16caa13ba3a95e98998c46e55c4a6f5b 4398 samba_4.17.7+dfsg-1.dsc
 6ce3884d020a1dd3a8674ece98fbc27cfa4b67065f3bd300d31909a4678e4038 18433248 samba_4.17.7+dfsg.orig.tar.xz
 57e0c7d64febf477c5a42950b5784aa6be3bbc6fae5daf48306c64a30fbb9633 269312 samba_4.17.7+dfsg-1.debian.tar.xz
 6b064b78de34d5861c0f7a45a345cb65a6de625bb02fe175b90545f0076f3bbf 5959 samba_4.17.7+dfsg-1_source.buildinfo
Files:
 1f439f36bb9a8e1ce9ef47dbec4885bd 4398 net optional samba_4.17.7+dfsg-1.dsc
 5dff7721e162321ccff9a1e307a24ca2 18433248 net optional samba_4.17.7+dfsg.orig.tar.xz
 428c69002cc3562d6c4a9a9f14472aa9 269312 net optional samba_4.17.7+dfsg-1.debian.tar.xz
 4442fdf8e3e2ee3c0aebccfbcca97934 5959 net optional samba_4.17.7+dfsg-1_source.buildinfo

-----BEGIN PGP SIGNATURE-----

iQFDBAEBCgAtFiEEe3O61ovnosKJMUsicBtPaxppPlkFAmQkWGEPHG1qdEB0bHMu
bXNrLnJ1AAoJEHAbT2saaT5Z8TAH/0+rE+Kk/439YqqEcZpqLTMf/If+BmykoqNr
lZ/i3+IoTYu8WN+CHyZmSz6AfwE4I7LueisN1L7g9dpvEMIUKDC1nnlcOXN04W2F
p5jAIq7Ag1aNXI9HambhbbAA0cHY3DVwryL9ZO7hxylD7EplZ7RMZY5qeViUgHwU
fNjf3rC1B0h9F8JZ1wjQRJEU6xJnqlAMZy7ZOr776uakvpDtX2sJVlewJ6ygI/MO
bXry61wVu5v6vl/SrwfK1DWsAmxhgxFXhJPgo/YeHOLJT6+Fe+WyzY4XRglpiQLn
HS+s/oizBMdYcO/vnfX1Xg8w0No2OsjKr5cdHGykyh5bBrxbMA4=
=HrR0
-----END PGP SIGNATURE-----