UbuntuUpdates.org

Package "libpam-winbind"

Name: libpam-winbind

Description:

Samba nameservice and authentication integration plugins

Latest version: 2:3.6.25-0ubuntu0.12.04.10
Release: precise (12.04)
Level: updates
Repository: main
Head package: samba
Homepage: http://www.samba.org

Links

Save this URL for the latest version of "libpam-winbind": https://www.ubuntuupdates.org/libpam-winbind


Download "libpam-winbind"


Other versions of "libpam-winbind" in Precise

Repository Area Version
base main 2:3.6.3-2ubuntu2
security main 2:3.6.25-0ubuntu0.12.04.10
PPA: nathan-renniewaldock ppa 2:3.6.7-1~ppa~precise

Changelog

Version: 2:3.6.25-0ubuntu0.12.04.10 2017-03-30 19:06:59 UTC

  samba (2:3.6.25-0ubuntu0.12.04.10) precise-security; urgency=medium

  * SECURITY REGRESSION: follow symlinks issue (LP: #1675698)
    - debian/patches/bug12721-*.patch: add backported fixes from Samba bug
      #12721.
  * debian/patches/*: fix CVE number in patch filenames.

 -- Marc Deslauriers <email address hidden> Tue, 28 Mar 2017 09:43:30 -0400

Source diff to previous version
1675698 Cannot access anything under a subdirectory if symlinks are disallowed

Version: 2:3.6.25-0ubuntu0.12.04.9 2017-03-23 14:06:57 UTC

  samba (2:3.6.25-0ubuntu0.12.04.9) precise-security; urgency=medium

  * SECURITY UPDATE: Symlink race allows access outside share definition
    - debian/patches/CVE-2017-2619-*.patch: security fix and prerequisite
      patches from upstream.
    - CVE-2017-2619

 -- Marc Deslauriers <email address hidden> Tue, 21 Mar 2017 08:06:46 -0400

Source diff to previous version

Version: 2:3.6.25-0ubuntu0.12.04.5 2016-12-19 19:07:12 UTC

  samba (2:3.6.25-0ubuntu0.12.04.5) precise-security; urgency=medium

  * SECURITY UPDATE: unconditional privilege delegation to Kerberos servers
    - debian/patches/CVE-2016-2125-v3.6.patch: don't use GSS_C_DELEG_FLAG in
      source3/librpc/crypto/gse.c and source3/libsmb/clifsinfo.c.
    - CVE-2016-2125

 -- Steve Beattie <email address hidden> Tue, 13 Dec 2016 11:00:51 -0800

Source diff to previous version
CVE-2016-2125 Unconditional privilege delegation to Kerberos servers in trusted realms

Version: 2:3.6.25-0ubuntu0.12.04.4 2016-05-18 15:06:46 UTC

  samba (2:3.6.25-0ubuntu0.12.04.4) precise-security; urgency=medium

  * SECURITY REGRESSION: compatibility with NetAPP SAN (LP: #1576109)
    - debian/patches/fix_netapp.patch: don't require NTLMSSP_SIGN for smb
      connections in source3/libsmb/ntlmssp.c.
  * SECURITY REGRESSION: compatibility with 3.6 servers (LP: #1574403)
    - debian/patches/relax_client_ipc_signing.patch: relax the
      "client ipc signing" parameter to "auto" so a 3.6 client can still
      connect to a 3.6 server. Administrators in environments that
      exclusively connect to more recent servers might want to manually
      configure this back to "mandatory".

 -- Marc Deslauriers <email address hidden> Thu, 12 May 2016 11:51:56 -0400

Source diff to previous version
1576109 gvfs-mount doesn't work with smb* 4.3.8 on a NetApp
1574403 Get an error 255 when trying to share a folder in Ubuntu 12.04.

Version: 2:3.6.25-0ubuntu0.12.04.3 2016-05-04 17:06:46 UTC

  samba (2:3.6.25-0ubuntu0.12.04.3) precise-security; urgency=medium

  * SECURITY REGRESSION: Add additional backported commits to fix
    regressions in the previous security updates. (LP: #1577739)
    - debian/patches/security_trailer_regression.patch: fix a regression
      verifying the security trailer in source3/rpc_server/srv_pipe.c.
    - debian/patches/bug9669_regression.patch: fix a crash when running
      net rpc join against an older Samba PDC in
      source3/rpc_client/cli_pipe.c.
    - debian/patches/netlogon_credentials_regression.patch: fix updating
      netlogon credentials in source3/rpc_client/cli_pipe.c.
    - Thanks to Andreas Schneider for the additional backports to
      Samba 3.6!

 -- Marc Deslauriers <email address hidden> Tue, 03 May 2016 12:51:09 -0400

1577739 samba security regression tracking bug



About   -   Send Feedback to @ubuntu_updates