---
- branch: pkgsrc-2019Q1
  date: Wed Apr 10 10:27:05 UTC 2019
  files:
  - new: 1.63.2.1
    old: '1.63'
    path: pkgsrc/net/samba4/Makefile
    pathrev: pkgsrc/net/samba4/Makefile@1.63.2.1
    type: modified
  - new: 1.21.2.1
    old: '1.21'
    path: pkgsrc/net/samba4/PLIST
    pathrev: pkgsrc/net/samba4/PLIST@1.21.2.1
    type: modified
  - new: 1.25.2.1
    old: '1.25'
    path: pkgsrc/net/samba4/distinfo
    pathrev: pkgsrc/net/samba4/distinfo@1.25.2.1
    type: modified
  id: 20190410T102705Z.94293f2f1a09f946a0ffd185a9fd5794a072acc6
  log: "Pullup ticket #5933 - requested by taca\nnet/samba4: security fix\n\nRevisions
    pulled up:\n- net/samba4/Makefile                                           1.64-1.65\n-
    net/samba4/PLIST                                              1.22\n- net/samba4/distinfo
    \                                          1.26-1.27\n\n---\n   Module Name:\tpkgsrc\n
    \  Committed By:\tadam\n   Date:\t\tWed Apr  3 14:23:06 UTC 2019\n\n   Modified
    Files:\n   \tpkgsrc/net/samba4: Makefile distinfo\n\n   Log Message:\n   samba4:
    updated to 4.10.1\n\n   Changes since 4.10.0:\n   * BUG 13837: py/kcc_utils: py2.6
    compatibility.\n   * BUG 13869: libcli: permit larger values of DataLength in\n
    \    SMB2_ENCRYPTION_CAPABILITIES of negotiate response.\n   * BUG 13840: regfio:
    Improve handling of malformed registry hive files.\n   * BUG 13789: ctdb-version:
    Simplify version string usage.\n   * BUG 13859: lib: Make fd_load work for non-regular
    files.\n   * BUG 13816: dbcheck in the middle of the tombstone garbage collection
    causes\n     replication failures, dbcheck: add --selftest-check-expired-tombstones\n
    \    cmdline option.\n   * BUG 13818: ndr_spoolss_buf: Fix out of scope use of
    stack variable in\n     NDR_SPOOLSS_PUSH_ENUM_OUT().\n   * BUG 13854: s4/messaging:
    Fix undefined reference in linking\n     libMESSAGING-samba4.so.\n   * BUG 13836:
    acl_read: Fix regression for empty lists.\n   * BUG 13841: s4:dlz make b9_has_soa
    check dc=@ node.\n   * BUG 13832: s3:client: Fix printing via smbspool backend
    with kerberos auth.\n   * BUG 13847: s4:librpc: Fix installation of Samba.\n   *
    BUG 13848: s3:lib: Fix the debug message for adding cache entries.\n   * BUG 13793:
    s3:utils: Add 'smbstatus -L --resolve-uids' to show username.\n   * BUG 13848:
    s3:lib: Fix the debug message for adding cache entries.\n   * BUG 13853: s3:waf:
    Fix the detection of makdev() macro on Linux.\n   * BUG 13789: ctdb-build: Drop
    creation of .distversion in tarball.\n   * BUG 13838: ctdb-packaging: Test package
    requires tcpdump, ctdb package\n     should not own system library directory.\n\n---\n
    \  Module Name:\tpkgsrc\n   Committed By:\tadam\n   Date:\t\tMon Apr  8 18:35:59
    UTC 2019\n\n   Modified Files:\n   \tpkgsrc/net/samba4: Makefile PLIST distinfo\n\n
    \  Log Message:\n   samba4: updated to 4.10.2\n\n   Release Notes for Samba 4.10.2\n\n
    \  This is a security release in order to address the following defects:\n   o
    \ CVE-2019-3870 (World writable files in Samba AD DC private/ dir)\n   o  CVE-2019-3880
    (Save registry file outside share as unprivileged user)\n\n   Details\n\n   o
    \ CVE-2019-3870:\n      During the provision of a new Active Directory DC, some
    files in the private/\n      directory are created world-writable.\n\n   o  CVE-2019-3880:\n
    \     Authenticated users with write permission can trigger a symlink traversal
    to\n      write or detect files outside the Samba share.\n\n   For more details
    and workarounds, please refer to the security advisories.\n\n   Changes since
    4.10.1:\n   * BUG 13834: CVE-2019-3870: pysmbd: Ensure a zero umask is set for\n
    \    smbd.mkdir().\n   * BUG 13851: CVE-2018-14629: rpc: winreg: Remove implementations
    of\n     SaveKey/RestoreKey.\n"
  module: pkgsrc
  subject: 'CVS commit: [pkgsrc-2019Q1] pkgsrc/net/samba4'
  unixtime: '1554892025'
  user: bsiegert