import samba-4.16.4-4.el8_7

2023-02-21 08:47:31 +00:00 · 2023-02-21 08:47:31 +00:00 · af57ae664d
commit af57ae664d
parent 3f570223e5
3 changed files with 6839 additions and 1 deletions
--- a/SOURCES/CVE-2022-38023-for-s3-v4-16.patch
+++ b/SOURCES/CVE-2022-38023-for-s3-v4-16.patch
--- a/SOURCES/CVE-2022-38023-v4-16.patch
+++ b/SOURCES/CVE-2022-38023-v4-16.patch
--- a/SPECS/samba.spec
+++ b/SPECS/samba.spec
@ -134,7 +134,7 @@

 %define samba_requires_eq()  %(LC_ALL="C" echo '%*' | xargs -r rpm -q --qf 'Requires: %%{name} = %%{epoch}:%%{version}\\n' | sed -e 's/ (none):/ /' -e 's/ 0:/ /' | grep -v "is not")

-%global baserelease 2
+%global baserelease 4

 %global samba_version 4.16.4
 %global talloc_version 2.3.3
@ -207,6 +207,8 @@ Source201:      README.downgrade
 Patch0:         samba-s4u.patch
 # https://gitlab.com/samba-team/samba/-/merge_requests/2477
 Patch1:         samba-4.16-waf-crypto.patch
+Patch2:         CVE-2022-38023-v4-16.patch
+Patch3:         CVE-2022-38023-for-s3-v4-16.patch

 Requires(pre): /usr/sbin/groupadd
 Requires(post): systemd
@ -4163,6 +4165,12 @@ fi
 %endif

 %changelog
+* Mon Jan 16 2023 Andreas Schneider <asn@redhat.com> - 4.16.4-4
+- related: rhbz#2154369 - Add additional patch for CVE-2022-38023
+
+* Tue Dec 20 2022 Andreas Schneider <asn@redhat.com> - 4.16.4-3
+- resolves: rhbz#2154369 - Fix CVE-2022-38023
+
 * Thu Aug 25 2022 Andreas Schneider <asn@redhat.com> - 4.16.4-2
 - resolves: rhbz#2120956 - Do not require samba package in python3-samba