import samba-4.16.4-103.el9_1

2023-05-04 13:02:14 +00:00 · 2023-05-04 13:02:14 +00:00 · a58f87ec7c
commit a58f87ec7c
parent c41c2e1833
3 changed files with 6840 additions and 1 deletions
--- a/SOURCES/CVE-2022-38023-for-s3-v4-16.patch
+++ b/SOURCES/CVE-2022-38023-for-s3-v4-16.patch
--- a/SOURCES/CVE-2022-38023-v4-16.patch
+++ b/SOURCES/CVE-2022-38023-v4-16.patch
--- a/SPECS/samba.spec
+++ b/SPECS/samba.spec
@ -134,7 +134,7 @@

 %define samba_requires_eq()  %(LC_ALL="C" echo '%*' | xargs -r rpm -q --qf 'Requires: %%{name} = %%{epoch}:%%{version}\\n' | sed -e 's/ (none):/ /' -e 's/ 0:/ /' | grep -v "is not")

-%global baserelease 101
+%global baserelease 103

 %global samba_version 4.16.4
 %global talloc_version 2.3.3
@ -207,6 +207,8 @@ Source201:      README.downgrade
 Patch0:         samba-s4u.patch
 # https://gitlab.com/samba-team/samba/-/merge_requests/2477
 Patch1:         samba-4.16-waf-crypto.patch
+Patch2:         CVE-2022-38023-v4-16.patch
+Patch3:         CVE-2022-38023-for-s3-v4-16.patch

 Requires(pre): /usr/sbin/groupadd
 Requires(post): systemd
@ -4163,6 +4165,13 @@ fi
 %endif

 %changelog
+* Mon Jan 16 2023 Andreas Schneider <asn@redhat.com> - 4.16.4-103
+- related: rhbz#2154372 - Add additional patches for CVE-2022-38023
+
+* Tue Dec 20 2022 Andreas Schneider <asn@redhat.com> - 4.16.4-102
+- Fix CVE-2022-38023
+- resolves: rhbz#2154372
+
 * Thu Aug 25 2022 Andreas Schneider <asn@redhat.com> - 4.16.4-101
 - resolves: rhbz#2121317 - Do not require samba package in python3-samba