Bug 1069666 – Update samba to 4.7.3

Bug 1069666 - Update samba to 4.7.3


Summary:	Update samba to 4.7.3

Status:	RESOLVED FIXED

Classification:	openSUSE
Product:	openSUSE Tumbleweed
Classification:	openSUSE
Component:	Samba
Version:	Current
Hardware:	Other Other

Priority:	P5 - None Severity: Normal (vote)
Target Milestone:	---
Assigned To:	Samuel Cabrero
QA Contact:	The 'Opening Windows to a Wider World' guys

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:
	Show dependency tree / graph

Create test case

Clone This Bug

Reported:	2017-11-23 17:44 UTC by Samuel Cabrero
Modified:	2018-03-23 23:37 UTC (History)
CC List:	1 user (show)

See Also:
Found By:	---
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Samuel Cabrero 2017-11-23 17:44:44 UTC

Changes from 4.7.1
  + Non-smbd processes using kernel oplocks can hang smbd; (bso#13121);
  + python: use communicate to fix Popen deadlock; (bso#13127);
  + smbd on disk file corruption bug under heavy threaded load; (bso#13130);
  + tevent: version 0.9.34; (bso#13130);
  + s3: smbd: Fix delete-on-close after smb2_find; (bso#13118);
Changes from 4.7.2
  + CVE-2017-14746: s3: smbd: Fix SMB1 use-after-free crash bug; 
    (bsc#1060427);(bso#13041);
  + CVE-2017-15275: s3: smbd: Chain code can return uninitialized
    memory when talloc buffer is grown; (bsc#1063008); (bso#13077);

Comment 1 Samuel Cabrero 2017-12-04 17:38:38 UTC

Released.

Comment 3 Swamp Workflow Management 2018-03-21 14:09:05 UTC

SUSE-SU-2018:0754-1: An update that solves one vulnerability and has two fixes is now available.

Category: security (moderate)
Bug References: 1069666,1081741,1084191
CVE References: CVE-2018-1050
Sources used:
SUSE Linux Enterprise Software Development Kit 12-SP3 (src):    samba-4.6.13+git.72.2a684235f41-3.21.3, talloc-2.1.10-3.3.2, tevent-0.9.34-3.3.2
SUSE Linux Enterprise Server 12-SP3 (src):    samba-4.6.13+git.72.2a684235f41-3.21.3, talloc-2.1.10-3.3.2, tevent-0.9.34-3.3.2
SUSE Linux Enterprise High Availability 12-SP3 (src):    samba-4.6.13+git.72.2a684235f41-3.21.3
SUSE Linux Enterprise Desktop 12-SP3 (src):    samba-4.6.13+git.72.2a684235f41-3.21.3, talloc-2.1.10-3.3.2, tevent-0.9.34-3.3.2
SUSE Enterprise Storage 5 (src):    samba-4.6.13+git.72.2a684235f41-3.21.3

Comment 4 Swamp Workflow Management 2018-03-23 23:11:44 UTC

openSUSE-SU-2018:0801-1: An update that solves one vulnerability and has two fixes is now available.

Category: security (moderate)
Bug References: 1069666,1081741,1084191
CVE References: CVE-2018-1050
Sources used:
openSUSE Leap 42.3 (src):    samba-4.6.13+git.72.2a684235f41-12.1, talloc-2.1.10-2.3.1, talloc-man-2.1.10-2.3.1, tevent-0.9.34-2.3.1, tevent-man-0.9.34-2.3.1