Received: from mail.netbsd.org (mail.netbsd.org [204.152.190.11]) by www.NetBSD.org (Postfix) with ESMTP id 2900E63B84D for ; Thu, 3 Mar 2011 07:26:45 +0000 (UTC) Received: by mail.netbsd.org (Postfix, from userid 605) id F03E519CE65; Thu, 3 Mar 2011 07:26:44 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by mail.netbsd.org (Postfix) with ESMTP id 5923019CE60 for ; Thu, 3 Mar 2011 07:26:42 +0000 (UTC) X-Virus-Scanned: amavisd-new at NetBSD.org Received: from mail.netbsd.org ([127.0.0.1]) by localhost (mail.NetBSD.org [127.0.0.1]) (amavisd-new, port 10025) with ESMTP id qODHaNaStonM for ; Thu, 3 Mar 2011 07:26:41 +0000 (UTC) Received: from cvs.netbsd.org (cvs.NetBSD.org [IPv6:2001:4f8:3:7:2e0:81ff:fe30:95bd]) by mail.netbsd.org (Postfix) with ESMTP id 86D3519CE5D for ; Thu, 3 Mar 2011 07:26:41 +0000 (UTC) Received: by cvs.netbsd.org (Postfix, from userid 500) id 72025175DD; Thu, 3 Mar 2011 07:26:41 +0000 (UTC) MIME-Version: 1.0 Content-Disposition: inline Content-Transfer-Encoding: 8bit Content-Type: text/plain; charset="US-ASCII" Date: Thu, 3 Mar 2011 07:26:41 +0000 From: "Steven Drake" Subject: CVS commit: [pkgsrc-2010Q4] pkgsrc/net/samba35 To: pkgsrc-changes@NetBSD.org Reply-To: sbd@netbsd.org X-Mailer: log_accum Message-Id: <20110303072641.72025175DD@cvs.netbsd.org> Sender: pkgsrc-changes-owner@NetBSD.org List-Id: pkgsrc-changes.NetBSD.org Precedence: bulk Module Name: pkgsrc Committed By: sbd Date: Thu Mar 3 07:26:41 UTC 2011 Modified Files: pkgsrc/net/samba35 [pkgsrc-2010Q4]: Makefile distinfo Log Message: Pullup ticket #3368 - requested by taca net/samba35 security fix. Revisions pulled up: - net/samba35/Makefile 1.2 - net/samba35/distinfo 1.2 --- Module Name: pkgsrc Committed By: taca Date: Mon Feb 28 14:34:56 UTC 2011 Modified Files: pkgsrc/net/samba35: Makefile distinfo Log Message: Update samba35 pacakge to 3.5.7. Release Announcements ===================== Samba 3.5.7, 3.4.12 and 3.3.15 are security releases in order to address CVE-2011-0719. o CVE-2011-0719: All current released versions of Samba are vulnerable to a denial of service caused by memory corruption. Range checks on file descriptors being used in the FD_SET macro were not present allowing stack corruption. This can cause the Samba code to crash or to loop attempting to select on a bad file descriptor set. A connection to a file share, or a local account is needed to exploit this problem, either authenticated or unauthenticated (guest connection). Currently we do not believe this flaw is exploitable beyond a crash or causing the code to loop, but on the advice of our security reviewers we are releasing fixes in case an exploit is discovered at a later date. Changes ------- o Jeremy Allison * BUG 7949: Fix DoS in Winbind and smbd with many file descriptors open. To generate a diff of this commit: cvs rdiff -u -r1.1.1.1.2.1 -r1.1.1.1.2.2 pkgsrc/net/samba35/Makefile cvs rdiff -u -r1.1.1.1 -r1.1.1.1.2.1 pkgsrc/net/samba35/distinfo Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.