Univention Bugzilla – Bug 41228
Regressions regarding NTLMSSP hardening of CVE-2016-2110 in Samba 4.3.7 (ES 3.1)
Last modified: 2016-09-29 17:31:12 CEST
+++ This bug was initially created as a clone of Bug #41196 +++ Regressions regarding the NTLMSSP hardening of CVE-2016-2110 in Samba 4.3.7 have been fixed upstream: * https://bugzilla.samba.org/show_bug.cgi?id=11849 * https://bugzilla.samba.org/show_bug.cgi?id=11852 * see also https://bugzilla.samba.org/show_bug.cgi?id=11889
The package has been rebuilt with the upstream patches for: * https://bugzilla.samba.org/show_bug.cgi?id=11849 * https://bugzilla.samba.org/show_bug.cgi?id=11852 Version: 2:4.3.7-1.826.201605091947
Rebuilt with additional patch https://bugzilla.samba.org/show_bug.cgi?id=11912 Version: 2:4.3.7-1.826.201605101131
Rebuilt with additional patches: https://bugzilla.samba.org/show_bug.cgi?id=11744#c43 Version: 2:4.3.7-1.826.201605191435
FAIL - please add a txt file for samba to ucs-3.1/ucs-3.1-1/doc/errata/staging OK - 2:4.3.7-1.826.201605191435 OK - update * basic tests (smbclient, slave join, windows join, share access) * ucs-test * update to 3.2 OK - installation * basic tests (smbclient, slave join, windows join, share access, password change) * update to 3.2
Advisory: samba.txt
<http://errata.software-univention.de/ucs/3.1/286.html>