Samba Changelog

New in version 4.1.14

December 1st, 2014
  • BUG 10472: Revert buildtools/wafadmin/Tools/perl.py back to upstream state.
  • BUG 10711: nmbd fails to accept "--piddir" option.
  • BUG 10896: s3-nmbd: Fix netbios name truncation.
  • BUG 10904: s3: libsmbclient-smb2. MacOSX 10 SMB2 server doesn't set STATUS_NO_MORE_FILES when handed a non-wildcard path.
  • BUG 10920: s3: nmbd: Ensure NetBIOS names are only 15 characters stored.
  • BUG 10942: Cleanup add_string_to_array and usage.
  • BUG 10898: spoolss: Fix handling of bad EnumJobs levels.
  • BUG 10905: spoolss: Fix jobid in level 3 EnumJobs response.
  • BUG 10620: s4-dns: Add support for BIND 9.10.
  • BUG 10835: nss_winbind: Add getgroupmembership for FreeBSD.
  • BUG 10932: pdb_tdb: Fix a TALLOC/SAFE_FREE mixup.
  • BUG 10472: pidl/wscript: Remove --with-perl-* options.
  • BUG 10921: s3:smbd: Fix file corruption using "write cache size != 0".
  • BUG 10889: vfs_glusterfs: Remove "integer fd" code and store the glfs pointers.
  • BUG 10933: s3-keytab: Fix keytab array NULL termination.
  • BUG 10880: S3: source3/smbd/process.c::srv_send_smb() returns true on the error path.

New in version 4.1.13 (October 20th, 2014)

  • BUG 10809: s3:smbd:open_file: Use a more natural check.
  • BUG 10717: s3: winbindd: Old NT Domain code sets struct winbind_domain->alt_name to be NULL. Ensure this is safe with modern AD-DCs.
  • BUG 10779: pthreadpool: Slightly serialize jobs.
  • BUG 10809: s3: smbd: Open logic fix.
  • BUG 10830: s3: nmbd: Ensure the main nmbd process doesn't create zombies.
  • BUG 10831: s3: lib: Signal handling - ensure smbrun and change password code save and restore existing SIGCHLD handlers.
  • BUG 10848: s3: smb2cli: Query info return length check was reversed.
  • BUG 9984: s3-libnet: Make sure we do not overwrite precreated SPNs.
  • BUG 10814: docs: Mention incompatibility between kernel oplocks and streams_xattr.
  • BUG 10735: Fix unstrcpy.
  • BUG 10797: s3: smbd: streams - Ensure share mode validation ignores internal opens (op_mid == 0).
  • BUG 10813: vfs_media_harmony: Fix a crash bug.
  • BUG 10860: registry: Don't leave dangling transactions.
  • BUG 10826: s3-winbindd: Use correct realm for trusted domains in idmap child.
  • BUG 10837: idmap_rfc2307: Fix a crash after connection problem to DC.
  • BUG 10838: s3-winbindd: Do not use domain SID from LookupSids for Sids2UnixIDs call.
  • BUG 9984: s3-libnet: Add libnet_join_get_machine_spns().
  • BUG 9985: s3-libads: Add all machine account principals to the keytab.
  • BUG 10816: nmbd: Send waiting status to systemd.
  • BUG 10817: libcli: Fix a segfault calling smbXcli_req_set_pending() on NULL.
  • BUG 10824: nsswitch: Skip groups we were not able to map.

New in version 4.1.12 (September 8th, 2014)

  • BUG 10369: build: Fix configure to honour '--without-dmapi'.
  • BUG 10737: s3:idmap: Don't log missing range config if range checking not requested.
  • BUG 10741: Fix flapping VFS gpfs offline bit.
  • BUG 3204: s3: winbindd: On new client connect, prune idle or hung connections older than "winbind request timeout". Add new parameter "winbind request timeout".
  • BUG 10640: lib: tevent: make TEVENT_SIG_INCREMENT atomic.
  • BUG 10650: Make "case sensitive = True" option working with "max protocol = SMB2" or higher in large directories.
  • BUG 10716: Fix smbd crashes when filename contains non-ascii character.
  • BUG 10728: 'net time': Fix usage and core dump.
  • BUG 10773: s3: smbd: POSIX ACLs. Remove incorrect check for SECINFO_PROTECTED_DACL in incoming security_information flags in posix_get_nt_acl_common().
  • BUG 10794: vfs_dirsort: Fix an off-by-one error that can cause uninitialized memory read.
  • BUG 10543: s3: Enforce a positive allocation_file_size for non-empty files.
  • BUG 10466: provision: Correctly provision the SOA record minimum TTL.
  • BUG 10652: Samba 4 consuming a lot of CPU when re-reading printcap info.
  • BUG 10787: dosmode: Fix FSCTL_SET_SPARSE request validation.
  • BUG 10742: s4-rpc: dnsserver: Allow . to be specified for @ record.
  • BUG 10731: sys_poll_intr: Fix timeout arithmetic.
  • BUG 10778: s3:libsmb: Set a max charge for SMB2 connections.
  • BUG 10716: lib: strings: Simplify strcasecmp.
  • BUG 10758: lib: Remove unused nstrcpy.
  • BUG 10782: smbd: Properly initialize mangle_hash.
  • BUG 9831: s4:setup/dns_update_list: make use of the new substitution variables.
  • BUG 10723: Allow netr_ServerReqChallenge() and netr_ServerAuthenticate3() on different connections.
  • BUG 10749: s4-rpc: dnsserver: Handle updates of tombstoned dnsNode objects.
  • BUG 10751: s4-rpc: dnsserver: return DNS_RANK_NS_GLUE recors when explicitly asked for.
  • BUG 10773: libcli/security: Add better detection of SECINFO_[UN]PROTECTED_[D|S]ACL in get_sec_info().
  • BUG 10761: docs: Fix typos in smb.conf (inherit acls).
  • BUG 10755: samba: Retain case sensitivity of cifs client.
  • BUG 9570: passdb: Fix NT_STATUS_NO_SUCH_GROUP.
  • BUG 10759: Fix a memory leak in cli_set_mntpoint().
  • BUG 10777: Don't discard result of checking grouptype.

New in version 4.1.11 (August 1st, 2014)

  • Samba 4.1.11 and 4.0.21 are security releases in order to address CVE-2014-3560 (Remote code execution in nmbd).

New in version 4.1.10 (July 29th, 2014)

  • BUG 10693: Backport ldb-1.1.17 + changes from master.
  • BUG 10587: s3: libsmbclient: Work around bugs in SLES cifsd and Apple smbx SMB1 servers.
  • BUG 10653: Samba won't start on a machine configured with only IPv4.
  • BUG 10671: s3: smbd: Prevent file truncation on an open that fails with share mode violation.
  • BUG 10673: s3: SMB2: Fix leak of blocking lock records in the database.
  • BUG 10684: SMB1 blocking locks can fail notification on unlock, causing client timeout.
  • BUG 10685: s3: smbd: Locking, fix off-by one calculation in brl_pending_overlap().
  • BUG 10692: wbcCredentialCache fails if challenge_blob is not first.
  • BUG 10693: lib/ldb: Fix compiler warnings.
  • BUG 8077: dbcheck: Add check and test for various invalid userParameters values.
  • BUG 8449: Simple use case results in "no talloc stackframe around, leaking memory" error.)
  • BUG 10130: dsdb: Always store and return the userParameters as a array of LE 16-bit values.
  • BUG 10582: dsdb: Rename private_data to rootdse_private_data in rootdse.
  • BUG 10627: rid_array used before status checked - segmentation fault due to null pointer dereference.
  • BUG 10693: ldb: make the successful ldb_transaction_start() message clearer.
  • BUG 10694: dsdb: Return NO_SUCH_OBJECT if a basedn is a deleted object.
  • BUG 10700: Backport access check related fixes from master.
  • BUG 10674: samba-tool: Add --site parameter to provision command.
  • BUG 10693: Fix SEGV from improperly formed SUBSTRING/PRESENCE filter.
  • BUG 10693: ldb: Do not build libldb-cmdline when using system ldb.
  • BUG 10693: s4-openldap: Remove use of talloc_reference in ldb_map_outbound.c
  • BUG 3263: net/doc: Make clear that net vampire is for NT4 domains only.
  • BUG s3: Fix missing braces in nfs4_acls.c.
  • BUG 10593: Fix "PANIC: assert failed at ../source3/smbd/open.c(1582): ret".
  • BUG 10663: msg_channel: Fix a 100% CPU loop.
  • BUG 10671: s3: smbd: Prevent file truncation on an open that fails with share mode violation.
  • BUG 10680: smbstatus: Fix an uninitialized variable.
  • BUG 10687: 'RW2' smbtorture test fails when -N is set to 2 due to the invalid status check in the second client.
  • BUG 10693: ldb: Fix 1138330 Dereference null return value, fix CIDs 241329, 240798, 1034791, 1034792 1034910, 1034910).
  • BUG 10699: smbd: Avoid double-free in get_print_db_byname.
  • BUG 8077: s4:dsdb/samldb: Don't allow 'userParameters' to be modified over LDAP for now.
  • BUG 9763: s4:dsdb/repl_meta_data: Make sure objectGUID can't be deleted.
  • BUG 10469: ldb-samba: fix a memory leak in ldif_canonicalise_objectCategory().
  • BUG 10294: s4:repl_meta_data: fix array assignment in replmd_process_linked_attribute().
  • BUG 10536: dbchecker: Verify and fix broken dn values.
  • BUG 10692: wbcCredentialCache fails if challenge_blob is not first.
  • BUG 10693: ldb:pyldb: Add some more helper functions for LdbDn.
  • BUG 10694: s4:dsdb/extended_dn_in: Don't force DSDB_SEARCH_SHOW_RECYCLED.
  • BUG 10696: Backport autobuild/selftest fixes from master.
  • BUG 10706: s3:smb2_read: let smb2_sendfile_send_data() behave like send_file_readX().
  • BUG 10693: pyldb: Decrement ref counters on py_results and quiet warnings.
  • BUG 10698: Backport drs-crackname fixes from master.
  • BUG 10693: ldb: Use of NULL pointer bugfix.
  • BUG 10703: Backport provision fixes from master.
  • BUG 10693: ldb: Add a env variable to disable RTLD_DEEPBIND.

New in version 4.1.9 (June 23rd, 2014)

  • This is a security release in order to address CVE-2014-0244 (Denial of service - CPU loop) and CVE-2014-3493 (Denial of service - Server crash/memory corruption).

New in version 4.1.8 (June 3rd, 2014)

  • BUG 10548: build: Fix ordering problems with lib-provided and internal RPATHs.
  • BUG 3124: s3: smb2: Fix 'xcopy /d' with samba shares.
  • BUG 10544: s3: lib/util: Fix logic inside set_namearray loops.
  • BUG 10564: Fix lock order violation and file lost.
  • BUG 10577: Fix wildcard unlink to fail if we get an error rather than trying to continue.
  • BUG 10569: dsdb: Do checks for invalid renames in samldb, before repl_meta_data.
  • BUG 10239: s3: nmbd: Reset debug settings after reading config file.
  • BUG 10544: s3: lib/util: set_namearray reads across end of namelist
  • BUG 10556: lib-util: Rename memdup to smb_memdup and fix all callers.
  • BUG 10609: CVE-2014-0239: dns: Don't reply to replies.
  • BUG 10517: Use exit_daemon() to communicate status of startup to systemd.
  • BUG 10590: byteorder: Do not assume PowerPC is big-endian.
  • BUG 10612: printing: Fix purge of all print jobs.
  • BUG 10524: Fix adding NetApps.
  • BUG 10547: idmap_autorid: Fix failure in reverse lookup if ID is from domain range index #0.
  • BUG 10472: script/autobuild: Make use of '--with-perl-{arch,lib}-install-dir'.
  • BUG 10554: Fix read of deleted memory in reply_writeclose()'.
  • BUG 10151: Extra ':' in msg for Waf Cross Compile Build System with Cross-answers command.
  • BUG 10348: Fix empty body in if-statement in continue_domain_open_lookup.
  • BUG 10549: CVE-2014-0178: Malformed FSCTL_SRV_ENUMERATE_SNAPSHOTS response.
  • BUG 10472: wafsamba: Fix the installation on FreeBSD.

New in version 4.0.18 (May 28th, 2014)

  • BUG 10548: build: Fix ordering problems with lib-provided and internal RPATHs.
  • BUG 10577: SMB1 wildcard unlink fail can leave a retry record on the open retry queue.
  • BUG 10564: Fix lock order violation and file lost.
  • BUG 10239: s3-nmbd: Reset debug settings after reading config file.
  • BUG 10544: s3-lib/util: set_namearray reads across end of namelist string.
  • BUG 10556: lib-util: Rename memdup to smb_memdup and fix all callers.
  • BUG 10609: CVE-2014-0239: dns: Don't reply to replies.
  • BUG 10590: byteorder: Do not assume PowerPC is big-endian.
  • BUG 10472: script/autobuild: Make use of '--with-perl-{arch,lib}-install-dir'.
  • BUG 10554: Fix read of deleted memory in reply_writeclose()'.
  • UG 10151: Extra ':' in msg for Waf Cross Compile Build System with Cross-answers command.
  • BUG 10348: Fix empty body in if-statement in continue_domain_open_lookup.
  • BUG 10549: CVE-2014-0178: Malformed FSCTL_SRV_ENUMERATE_SNAPSHOTS response.
  • BUG 10472: wafsamba: Fix the installation on FreeBSD.

New in version 4.0.17 (April 15th, 2014)

  • BUG 9878: Make "force user" work as expected.
  • BUG 9942: Fix problem with server taking too long to respond to a MSG_PRINTER_DRVUPGRADE message.
  • BUG 9993: s3-printing: Fix obvious memory leak in printer_list_get_printer().
  • BUG 10344: SessionLogoff on a signed connection with an outstanding notify request crashes smbd.
  • BUG 10431: Fix STATUS_NO_MEMORY response from Query File Posix Lock request.
  • BUG 10508: smbd: Correctly add remote users into local groups.
  • BUG 10534: Cleanup messages.tdb record after unclean smbd shutdown.
  • BUG 9911: Fix build on AIX with IBM XL C/C++ (gettext detection issues).
  • BUG 10308: Fix String Conversion Errors with Samba 4.1.0 Build on AIX 7.1.
  • smbd: Split create_conn_struct into a fn that does not change the working dir.
  • BUG 10458: Fix 'wbinfo -i' with one-way trust.
  • s3:rpc_server: Minor refactoring of process_request_pdu().
  • BUG 10471: Don't respond with NXDOMAIN to records that exist with another type.
  • BUG 10504: lsa.idl: Define lsa.ForestTrustCollisionInfo and ForestTrustCollisionRecord as public structs.
  • BUG 10439: Increase max netbios name components.
  • BUG 10188: doc: Add "spoolss: architecture" parameter usage.
  • BUG 10484: Initial FSRVP rpcclient requests fail with NT_STATUS_PIPE_NOT_AVAILABLE.
  • BUG 10387: 'net ads search' on high latency networks can return a partial list with no error indication.
  • BUG 10344: SessionLogoff on a signed connection with an outstanding notify request crashes smbd.
  • BUG 10422: max xmit > 64kb leads to segmentation fault.
  • BUG 10444: smbd_server_connection_terminate("CTDB_SRVID_RELEASE_IP") panics from within ctdbd_migrate() with invalid lock_order.
  • BUG 10464: samba4 services not binding on IPv6 addresses causing connection delays.
  • tevent: Fix crash bug in tevent_queue_immediate_trigger().
  • BUG 10378: dfs: Always call create_conn_struct with root privileges.
  • BUG 10472: pidl: waf should have an option for the dir to install perl files and do not glob.
  • BUG 10474: s3-spoolssd: Don't register spoolssd if epmd is not running.
  • BUG 10481: s3-rpc_server: Fix handling of fragmented rpc requests.
  • BUG 10506: Make 'smbreadline' build with readline 6.3.