ports/118698: [PATCH] Fix CVE-2007-6015 for net/samba3

Xin LI delphij at FreeBSD.org
Fri Dec 14 19:30:01 UTC 2007 

>Number:         118698
>Category:       ports
>Synopsis:       [PATCH] Fix CVE-2007-6015 for net/samba3
>Confidential:   no
>Severity:       critical
>Priority:       high
>Responsible:    freebsd-ports-bugs
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:
>Class:          update
>Submitter-Id:   current-users
>Arrival-Date:   Fri Dec 14 19:30:00 UTC 2007
>Closed-Date:
>Last-Modified:
>Originator:     Xin LI
>Release:        FreeBSD 7.0-BETA3 i386
>Organization:
The FreeBSD Project
>Environment:
System: FreeBSD freefall.freebsd.org 7.0-BETA3 FreeBSD 7.0-BETA3 #30: Fri Nov 30 23:12:12 UTC 2007 simon at freefall.freebsd.org:/usr/src/sys/i386/compile/FREEFALL i386


>Description:
	This is a security update.

	Maintainer CC'ed.
>How-To-Repeat:
>Fix:


--- samba-CVE-2007-6015.diff begins here ---
Index: Makefile
===================================================================
RCS file: /home/ncvs/ports/net/samba3/Makefile,v
retrieving revision 1.167
diff -u -p -r1.167 Makefile
--- Makefile	12 Dec 2007 15:34:20 -0000	1.167
+++ Makefile	14 Dec 2007 19:08:02 -0000
@@ -7,7 +7,7 @@
 
 PORTNAME=		samba
 PORTVERSION?=		3.0.26a
-PORTREVISION=		2
+PORTREVISION=		3
 PORTEPOCH?=		1
 CATEGORIES?=		net
 MASTER_SITES=		${MASTER_SITE_SAMBA}
@@ -17,8 +17,6 @@ DISTNAME=		${PORTNAME}-${PORTVERSION:S/.
 MAINTAINER?=		timur at FreeBSD.org
 COMMENT?=		A free SMB and CIFS client and server for UNIX
 
-FORBIDDEN=		http://vuxml.freebsd.org/ffcbd42d-a8c5-11dc-bec2-02e0185f8d72.html
-
 CONFLICTS?=		ja-samba-2.* ja-samba-3.* samba-2.* sharity-light-1.*
 
 USE_ICONV=		yes
@@ -47,7 +45,7 @@ SAMBA_LIBDIR=		${PREFIX}/${SAMBA_LIB}
 SAMBA_MODULEDIR=	${SAMBA_LIBDIR}/samba
 
 PATCH_SITES=	http://us1.samba.org/samba/ftp/patches/security/	
-PATCHFILES=	samba-3.0.26a-CVE-2007-4572.patch samba-3.0.26a-CVE-2007-5398.patch
+PATCHFILES=	samba-3.0.26a-CVE-2007-4572.patch samba-3.0.26a-CVE-2007-5398.patch samba-3.0.27a-CVE-2007-6015.patch
 PATCH_DIST_STRIP=	-p2
 
 CONFIGURE_TARGET=	--build="${MACHINE_ARCH}-portbld-freebsd${OSREL}"
Index: distinfo
===================================================================
RCS file: /home/ncvs/ports/net/samba3/distinfo,v
retrieving revision 1.78
diff -u -p -r1.78 distinfo
--- distinfo	21 Nov 2007 13:01:17 -0000	1.78
+++ distinfo	14 Dec 2007 19:08:07 -0000
@@ -7,3 +7,6 @@ SIZE (samba-3.0.26a-CVE-2007-4572.patch)
 MD5 (samba-3.0.26a-CVE-2007-5398.patch) = 79934d4dcc779a467697e7cf86046631
 SHA256 (samba-3.0.26a-CVE-2007-5398.patch) = 37a0181aa647de7feb888d675ea726e135bbe53bc3099076eaf0682fc1b11b05
 SIZE (samba-3.0.26a-CVE-2007-5398.patch) = 1232
+MD5 (samba-3.0.27a-CVE-2007-6015.patch) = 3844d4939cdaae70a0ca3c884f110041
+SHA256 (samba-3.0.27a-CVE-2007-6015.patch) = a9d7cbe06c7379c599adf21b74c4ba375bb18144f4f7600bea56f444368aaa01
+SIZE (samba-3.0.27a-CVE-2007-6015.patch) = 1739
--- samba-CVE-2007-6015.diff ends here ---


>Release-Note:
>Audit-Trail:
>Unformatted:

More information about the freebsd-ports-bugs mailing list