Back to samba PTS page

Accepted samba 2:4.18.1+dfsg-1~exp1 (source) into experimental

To: debian-devel-changes@lists.debian.org, debian-experimental-changes@lists.debian.org
Subject: Accepted samba 2:4.18.1+dfsg-1~exp1 (source) into experimental
From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
Date: Wed, 29 Mar 2023 17:09:04 +0000
Debian: DAK
Debian-architecture: source
Debian-archive-action: accept
Debian-changes: samba_4.18.1+dfsg-1~exp1_source.changes
Debian-source: samba
Debian-suite: experimental
Debian-version: 2:4.18.1+dfsg-1~exp1
Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=ftp-master.debian.org; s=smtpauto.fasolo; h=Date:Message-Id: Content-Transfer-Encoding:Content-Type:Subject:MIME-Version:To:Reply-To:From: Cc:Content-ID:Content-Description:In-Reply-To:References; bh=3MLcyr/A2VG/Del/QsXNC427BYibsGBSGC9s6u5L5zM=; b=blamLsZ+wWLyWNpTLbltshmnXf UB4Wsf8Q2pqEqMejcZG+6cWlESHaw8DLFTenDhPgW1EKg/eqVR8b8tEo8jnyDE9xqNlXDZc4LKzQP pmh05HEh7wMcfGZpFf2L45T9Zju0LwIsEOaWjGeGreaUP42fg4BtC08Ht4fuhIJKYp7hcRZdCceBp YppFiuR2ZMI29PdtzvDx/LviBipvXjUX0qbdCsPwvdZWSo23HiCmzXku11ke9pM+f5CxIJlsBYVxz xB9kdCgj4yfgwXRyeAmF9tpyYIkmVLAabh2rbJ6GNOIPwfmEk0LwkDoY+67snee0I0PMktML+Sf/4 KZB2kzPQ==;
Mail-followup-to: debian-devel@lists.debian.org
Message-id: <E1phZIG-002woL-4r@fasolo.debian.org>
Reply-to: debian-devel@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 29 Mar 2023 17:59:17 +0300
Source: samba
Architecture: source
Version: 2:4.18.1+dfsg-1~exp1
Distribution: experimental
Urgency: high
Maintainer: Debian Samba Maintainers <pkg-samba-maint@lists.alioth.debian.org>
Changed-By: Michael Tokarev <mjt@tls.msk.ru>
Changes:
 samba (2:4.18.1+dfsg-1~exp1) experimental; urgency=high
 .
   * upstream stable/security/bugfix release, fixing the following issues:
     o CVE-2023-0225: An incomplete access check on dnsHostName allows
       authenticated but otherwise unprivileged users to delete this
       attribute from any object in the directory.
       https://www.samba.org/samba/security/CVE-2023-0225.html
     o CVE-2023-0922: The Samba AD DC administration tool, when operating
       against a remote LDAP server, will by default send new or reset
       passwords over a signed-only connection.
       https://www.samba.org/samba/security/CVE-2023-0922.html
     o CVE-2023-0614: Fix in 4.6.16, 4.7.9, 4.8.4 and 4.9.7 for CVE-2018-10919
       Confidential attribute disclosure via LDAP filters was insufficient and
       an attacker may be able to obtain confidential BitLocker recovery keys
       from a Samba AD DC.  Installations with such secrets in their Samba AD
       should assume they have been obtained and need replacing.
       https://www.samba.org/samba/security/CVE-2023-0614.html
     Closes: CVE-2023-0225 CVE-2023-0922 CVE-2023-0614
   * update libldb symbols and versions
Checksums-Sha1:
 b8aad0eaa651d3c47417d71f55bd03ecbd0e54eb 4418 samba_4.18.1+dfsg-1~exp1.dsc
 6a7c1726fd868f04219388b20f0dd1308a21c354 24609372 samba_4.18.1+dfsg.orig.tar.xz
 f531400f274039b2efd692677c777e13baeb7807 269596 samba_4.18.1+dfsg-1~exp1.debian.tar.xz
 d21dd57e8084147101c09136ea6cd5b9d8dc478a 5979 samba_4.18.1+dfsg-1~exp1_source.buildinfo
Checksums-Sha256:
 5cbd70153db1a498eeae609bb305fe4f6314c8e9f0aa1f295aa4de313efbf744 4418 samba_4.18.1+dfsg-1~exp1.dsc
 cc856d6f07a1bbe428994b429a1ff9e5beebfd4f6717481084e3b19b79f4fd5e 24609372 samba_4.18.1+dfsg.orig.tar.xz
 239b15e9e46ae1f6d326f3da2a266cc26fa71cb32614ca8d02e8fa00a0c5375d 269596 samba_4.18.1+dfsg-1~exp1.debian.tar.xz
 d84b5997368303581e2fcd861ab46b324b0cd34403dfb168acc70ed1ee8e4bd2 5979 samba_4.18.1+dfsg-1~exp1_source.buildinfo
Files:
 34028e4a7412a834d9ef904f7f2da683 4418 net optional samba_4.18.1+dfsg-1~exp1.dsc
 271645a5abe9d8e7855cffb157eaaf2c 24609372 net optional samba_4.18.1+dfsg.orig.tar.xz
 d5ea21f20e752aa29022cb2985bb3b20 269596 net optional samba_4.18.1+dfsg-1~exp1.debian.tar.xz
 a4e455bb1a1d66d99d2e344ebdb1deff 5979 net optional samba_4.18.1+dfsg-1~exp1_source.buildinfo

-----BEGIN PGP SIGNATURE-----

iQFDBAEBCgAtFiEEe3O61ovnosKJMUsicBtPaxppPlkFAmQkaSQPHG1qdEB0bHMu
bXNrLnJ1AAoJEHAbT2saaT5ZNhcH/A8arvpVPRX3k2lw1JcNcwoHtXenld+WA+Ti
mSYnpr14agzg3KfXJQb4J1Tj1ptbGS+xLrrxB9B9SD9sPK6d/1vH2QKv58hBDNMm
dpP9DvQSbtPD4NGYvATx7hvdJhQndmS/7YmJaoBjU2pilGbtnVYMR4IJVJaNjz1K
iZAzt01HINUApWUQpCudAxxyddCnlakC+N/lstWd5oKQbzDafhH1miZ4cA+lo499
Fj70DxzTPH76xo2YMfeo4CEf9yyb7ihHe/KunoWW6BWIrVZVQxNGvlUyfGmvpi9d
2Q8j0ENMMFNcnND+/a45BVIDTvMf8lv+MSfrIY/RZsvZQvuxBiQ=
=joJs
-----END PGP SIGNATURE-----