summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorTreeve Jelbert2007-05-16 18:29:09 +0200
committerEric Sandall2007-05-17 10:15:37 -0700
commit8c95714d7017ff63d3d3d31c2b5a1946c8b61413 (patch)
tree1f6ba922807c0bb22511a2e2b5364a2ff4917652
parente6830cc2624b1cb6bd2df55a151ef1954c96decd (diff)
samba-3.0.25
(cherry picked from commit 063f650fb2d637a1501762368586c0361103668d)
-rwxr-xr-xnet/samba/DETAILS8
-rw-r--r--net/samba/HISTORY13
2 files changed, 17 insertions, 4 deletions
diff --git a/net/samba/DETAILS b/net/samba/DETAILS
index dfaa5f726f..4646d3dce6 100755
--- a/net/samba/DETAILS
+++ b/net/samba/DETAILS
@@ -1,5 +1,6 @@
SPELL=samba
- VERSION=3.0.24
+ VERSION=3.0.25
+ SOURCE_HASH=sha512:86d6070513bdbd1a656ec5c64bf81dfadac8271955a39e96e712d8ebc016756fba071cc2df3bcaad086963b8022d39cb7e177f4772e4c047369c4afc77ae3a8c
SOURCE=$SPELL-$VERSION.tar.gz
SOURCE_DIRECTORY=$BUILD_DIRECTORY/$SPELL-$VERSION
SOURCE_URL[0]=http://us1.samba.org/samba/ftp/$SOURCE
@@ -7,15 +8,14 @@ SOURCE_DIRECTORY=$BUILD_DIRECTORY/$SPELL-$VERSION
SOURCE_URL[2]=ftp://www.mirror.ac.uk/sites/ftp.samba.org/pub/$SPELL/$SOURCE
SOURCE_URL[3]=ftp://de.samba.org/samba.org/$SOURCE
SOURCE_URL[4]=http://us1.samba.org/samba/ftp/old-versions/$SOURCE
-# SOURCE_HASH=sha512:c9235befbea78c5d3c703ef6060e139d28ecaa24ce7784c508f1601
- SOURCE_GPG="gurus.gpg:${SOURCE}.sig"
+# SOURCE_GPG="gurus.gpg:${SOURCE}.sig"
if [[ "$SAMBA_VSCAN" == "y" ]] ; then
VSCAN_VERSION=0.3.6b
SOURCE2=$SPELL-vscan-$VSCAN_VERSION.tar.bz2
SOURCE2_URL[0]=$SOURCEFORGE_URL/openantivirus/$SOURCE2
SOURCE2_HASH=sha512:9e1fba0f59bf10450a6f6a17aa261ae321385fd539b9757d57bfe8fea29ceccdef01427bbf7327f906000ecae41b87ed85853151be52f9ceb2dce0afc519f063
fi
- SECURITY_PATCH=2
+ SECURITY_PATCH=3
PATCHLEVEL=1
LICENSE[0]=GPL
WEB_SITE=http://www.samba.org/
diff --git a/net/samba/HISTORY b/net/samba/HISTORY
index b334095107..5d4c37a55b 100644
--- a/net/samba/HISTORY
+++ b/net/samba/HISTORY
@@ -1,3 +1,16 @@
+2007-05-16 Treeve Jelbert <treeve@sourcemage.org>
+ * DETAILS: version 3.0.35
+ SECURITY_PATCH++
+ o CVE-2007-2444
+ Local SID/Name translation bug can result in
+ user privilege elevation
+ o CVE-2007-2446
+ Multiple heap overflows allow remote code execution
+ o CVE-2007-2447
+ Unescaped user input parameters are passed as
+ arguments to /bin/sh allowing for remote command execution
+ fixes bug #13782
+
2007-02-05 Eric Sandall <sandalle@sourcemage.org>
* DETAILS: Updated to 3.0.24 (Security update)
o CVE-2007-0452 (Potential Denial of Service bug in smbd)