---
- branch: pkgsrc-2016Q1
  date: Fri Apr 15 07:25:11 UTC 2016
  files:
  - new: 1.16.2.1
    old: '1.16'
    path: pkgsrc/net/samba4/Makefile
    pathrev: pkgsrc/net/samba4/Makefile@1.16.2.1
    type: modified
  - new: 1.5.2.1
    old: '1.5'
    path: pkgsrc/net/samba4/PLIST
    pathrev: pkgsrc/net/samba4/PLIST@1.5.2.1
    type: modified
  - new: 1.8.2.1
    old: '1.8'
    path: pkgsrc/net/samba4/distinfo
    pathrev: pkgsrc/net/samba4/distinfo@1.8.2.1
    type: modified
  id: 20160415T072511Z.5170bb8028c9156e73de322e8668894118adbc32
  log: |
    Pullup ticket #4958 - requested by manu
    net/samba4: security fix

    Revisions pulled up:
    - net/samba4/Makefile                                           1.17
    - net/samba4/PLIST                                              1.6
    - net/samba4/distinfo                                           1.9

    ---
       Module Name:    pkgsrc
       Committed By:   manu
       Date:           Wed Apr 13 08:26:10 UTC 2016

       Modified Files:
               pkgsrc/net/samba4: Makefile PLIST distinfo

       Log Message:
       Update net/samba4 to 4.3.8

       This fixes the Badlock bug (CVE-2016-2118) and others vulnerabilities:
       o  CVE-2016-2118 (SAMR and LSA man in the middle attacks possible)
       o  CVE-2016-2115 (SMB IPC traffic is not integrity protected)
       o  CVE-2016-2114 ("server signing = mandatory" not enforced)
       o  CVE-2016-2113 (Missing TLS certificate validation)
       o  CVE-2016-2112 (LDAP client and server don't enforce integrity)
       o  CVE-2016-2111 (NETLOGON Spoofing Vulnerability)
       o  CVE-2016-2110 (Man in the middle attacks possible with NTLMSSP)
       o  CVE-2015-7560 (Incorrect ACL get/set allowed on symlink path)
       o  CVE-2016-0771 (Out-of-bounds read in internal DNS server)
       o  CVE-2015-5370 (Multiple errors in DCE-RPC code)
  module: pkgsrc
  subject: 'CVS commit: [pkgsrc-2016Q1] pkgsrc/net/samba4'
  unixtime: '1460705111'
  user: bsiegert