Date: Wed, 24 May 2017 14:53:47 +0000 (UTC) From: "Timur I. Bakeyev" <timur@FreeBSD.org> To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r441602 - in head/net: samba44 samba45 samba46 samba46/files Message-ID: <201705241453.v4OErl8s066005@repo.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: timur Date: Wed May 24 14:53:46 2017 New Revision: 441602 URL: https://svnweb.freebsd.org/changeset/ports/441602 Log: Urgent upgrade of the Samba 4.[4-6] ports to address RCE in the Samba code(CVE-2017-7494). All versions starting from 3.5+ are affected. Security: CVE-2017-7494 Added: head/net/samba46/files/patch-source3__librpc__crypto__gse.c (contents, props changed) Modified: head/net/samba44/Makefile head/net/samba44/distinfo head/net/samba45/Makefile head/net/samba45/distinfo head/net/samba46/Makefile head/net/samba46/distinfo head/net/samba46/pkg-plist Modified: head/net/samba44/Makefile ============================================================================== --- head/net/samba44/Makefile Wed May 24 14:51:00 2017 (r441601) +++ head/net/samba44/Makefile Wed May 24 14:53:46 2017 (r441602) @@ -19,7 +19,7 @@ CONFLICTS?= *samba3[2-6]-3.* samba4-4.0 SAMBA4_BASENAME= samba SAMBA4_PORTNAME= ${SAMBA4_BASENAME}4 -SAMBA4_VERSION= 4.4.13 +SAMBA4_VERSION= 4.4.14 SAMBA4_DISTNAME= ${SAMBA4_BASENAME}-${SAMBA4_VERSION:S|.p|pre|:S|.r|rc|:S|.t|tp|:S|.a|alpha|} WRKSRC?= ${WRKDIR}/${DISTNAME} Modified: head/net/samba44/distinfo ============================================================================== --- head/net/samba44/distinfo Wed May 24 14:51:00 2017 (r441601) +++ head/net/samba44/distinfo Wed May 24 14:53:46 2017 (r441602) @@ -1,3 +1,3 @@ -TIMESTAMP = 1490980593 -SHA256 (samba-4.4.13.tar.gz) = 61558009408e4f37d79c2b5f9c49cf7633908e12a14141e1c075c67011fa0d2d -SIZE (samba-4.4.13.tar.gz) = 20766658 +TIMESTAMP = 1495629061 +SHA256 (samba-4.4.14.tar.gz) = b0a564af71536f12f01aae2e1d93a04c588dd53b81a3f3eaf9bb73ba4f6f57dd +SIZE (samba-4.4.14.tar.gz) = 20766497 Modified: head/net/samba45/Makefile ============================================================================== --- head/net/samba45/Makefile Wed May 24 14:51:00 2017 (r441601) +++ head/net/samba45/Makefile Wed May 24 14:53:46 2017 (r441602) @@ -19,7 +19,7 @@ CONFLICTS?= *samba3[2-6]-3.* samba4-4. SAMBA4_BASENAME= samba SAMBA4_PORTNAME= ${SAMBA4_BASENAME}4 -SAMBA4_VERSION= 4.5.8 +SAMBA4_VERSION= 4.5.10 SAMBA4_DISTNAME= ${SAMBA4_BASENAME}-${SAMBA4_VERSION:S|.p|pre|:S|.r|rc|:S|.t|tp|:S|.a|alpha|} WRKSRC?= ${WRKDIR}/${DISTNAME} Modified: head/net/samba45/distinfo ============================================================================== --- head/net/samba45/distinfo Wed May 24 14:51:00 2017 (r441601) +++ head/net/samba45/distinfo Wed May 24 14:53:46 2017 (r441602) @@ -1,3 +1,3 @@ -TIMESTAMP = 1490981258 -SHA256 (samba-4.5.8.tar.gz) = f63b656d8823a280c50c9dbd6b692816cd7a88adfe9b47997ce697fd75bf81f0 -SIZE (samba-4.5.8.tar.gz) = 20979104 +TIMESTAMP = 1495629026 +SHA256 (samba-4.5.10.tar.gz) = 7cb753f5f6d5527ef40d4c1f47dacafb7c876cb304b4906ccb390c6a18477714 +SIZE (samba-4.5.10.tar.gz) = 20989431 Modified: head/net/samba46/Makefile ============================================================================== --- head/net/samba46/Makefile Wed May 24 14:51:00 2017 (r441601) +++ head/net/samba46/Makefile Wed May 24 14:53:46 2017 (r441602) @@ -19,7 +19,7 @@ CONFLICTS?= *samba3[2-6]-3.* samba4-4. SAMBA4_BASENAME= samba SAMBA4_PORTNAME= ${SAMBA4_BASENAME}4 -SAMBA4_VERSION= 4.6.2 +SAMBA4_VERSION= 4.6.4 SAMBA4_DISTNAME= ${SAMBA4_BASENAME}-${SAMBA4_VERSION:S|.p|pre|:S|.r|rc|:S|.t|tp|:S|.a|alpha|} WRKSRC?= ${WRKDIR}/${DISTNAME} Modified: head/net/samba46/distinfo ============================================================================== --- head/net/samba46/distinfo Wed May 24 14:51:00 2017 (r441601) +++ head/net/samba46/distinfo Wed May 24 14:53:46 2017 (r441602) @@ -1,3 +1,3 @@ -TIMESTAMP = 1490962372 -SHA256 (samba-4.6.2.tar.gz) = 927afcc16e444718985e3952de92d34e7b776b9ca0238179d866da18a6441c35 -SIZE (samba-4.6.2.tar.gz) = 21097045 +TIMESTAMP = 1495628999 +SHA256 (samba-4.6.4.tar.gz) = 4ac67329d18e5586dc75db50e23b81c1f6c45a2d5bb9752ea6d90dcca08d9a61 +SIZE (samba-4.6.4.tar.gz) = 21108045 Added: head/net/samba46/files/patch-source3__librpc__crypto__gse.c ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/net/samba46/files/patch-source3__librpc__crypto__gse.c Wed May 24 14:53:46 2017 (r441602) @@ -0,0 +1,16 @@ +--- source3/librpc/crypto/gse.c.orig 2017-05-24 13:22:06.188197000 +0000 ++++ source3/librpc/crypto/gse.c 2017-05-24 13:31:22.933150000 +0000 +@@ -334,11 +334,12 @@ + struct gse_context *gse_ctx = + talloc_get_type_abort(gensec_security->private_data, + struct gse_context); +- OM_uint32 gss_maj, gss_min; ++ OM_uint32 gss_min; + gss_buffer_desc in_data; + gss_buffer_desc out_data; + DATA_BLOB blob = data_blob_null; + NTSTATUS status; ++ OM_uint32 gss_maj = -1; + OM_uint32 time_rec = 0; + struct timeval tv; + struct cli_credentials *cli_creds = gensec_get_credentials(gensec_security); Modified: head/net/samba46/pkg-plist ============================================================================== --- head/net/samba46/pkg-plist Wed May 24 14:51:00 2017 (r441601) +++ head/net/samba46/pkg-plist Wed May 24 14:53:46 2017 (r441602) @@ -434,6 +434,7 @@ lib/shared-modules/vfs/zfsacl.so %%PYTHON_SITELIBDIR%%/samba/com.so %%PYTHON_SITELIBDIR%%/samba/common.py %%PYTHON_SITELIBDIR%%/samba/credentials.so +%%PYTHON_SITELIBDIR%%/samba/crypto.so %%PYTHON_SITELIBDIR%%/samba/dbchecker.py %%PYTHON_SITELIBDIR%%/samba/dcerpc/__init__.py %%PYTHON_SITELIBDIR%%/samba/dcerpc/atsvc.so
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201705241453.v4OErl8s066005>