Hello community, here is the log from the commit of package patchinfo.2227 for openSUSE:12.3:Update checked in at 2013-11-29 22:05:50 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:12.3:Update/patchinfo.2227 (Old) and /work/SRC/openSUSE:12.3:Update/.patchinfo.2227.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "patchinfo.2227" Changes: -------- New Changes file: NO CHANGES FILE!!! New: ---- _patchinfo ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ _patchinfo ++++++ <patchinfo> <issue id="848101" tracker="bnc">CVE-2013-4475: samba: No access check verification on stream files.</issue> <issue id="838472" tracker="bnc">Client trying to delete print job fails: Samba returns: WERR_INVALID_PRINTER_NAME</issue> <issue id="817880" tracker="bnc">rpcclient adddriver and setdrive do not set all needed registry entries</issue> <issue id="849226" tracker="bnc">upstream fixes tracker bug for Oct/Nov 2013 update</issue> <issue id="CVE-2013-4475" tracker="cve" /> <category>security</category> <rating>moderate</rating> <packager>lmuelle</packager> <description>the following security issues were fixed in samba: - ACLs are not checked on opening an alternate data stream on a file or directory; CVE-2013-4475; (bso#10229); (bnc#848101). - Fix memleak in reload_printers_full(); (bso#9993). - Valid utf8 filenames cause "invalid conversion error" messages; (bso#10139). - s3: smb2 breaks "smb encryption = mandatory"; (bso#10167). - Missing talloc_free can leak stackframe in error path; (bso#10187). - Offline logon cache not updating for cross child domain group membership; (bso#10194). - The preceding bugs are tracked by (bnc#849226) too. - Make Samba work on site with Read Only Domain Controller; (bso#5917). - Give machine password changes 10 minutes of time; (bso#8955). - NetrServerPasswordSet2 timeout is too short; (bso#8955). - Fix fallback to ncacn_np in cm_connect_lsat(); (bso#9615); (bso#9899). - s3-winbind: Do not delete an existing valid credential cache; (bso#9994). - 'net ads join': Fix segmentation fault in create_local_private_krb5_conf_for_domain; (bso#10073). - Fix variable list in man vfs_crossrename; (bso#10076). - MacOSX 10.9 will not follow path-based DFS referrals handed out by Samba; (bso#10097). - Honour output buffer length set by the client for SMB2 GetInfo requests; (bso#10106). - Handle Dropbox (write-only-directory) case correctly in pathname lookup; (bso#10114). - Fix 'smbstatus' as non-root user; (bso#10127). - The preceding bugs are tracked by (bnc#849226) too. - Windows 8 Roaming profiles fail; (bso#9678). - Linux kernel oplock breaks can miss signals; (bso#10064). - The preceding bugs are tracked by (bnc#849226) too. - Verify source tar ball gpg signature. - Store and return the correct spoolss jobid in notifications; (bnc#838472). - Reload snums before processing the printer list. (bnc#817880). </description> <summary>update for samba</summary> </patchinfo> -- To unsubscribe, e-mail: opensuse-commit+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-commit+help@opensuse.org