!141 [sync] PR-137: fix CVE-2022-42898

From: @openeuler-sync-bot Reviewed-by: @seuzw Signed-off-by: @seuzw
2022-11-21 13:03:05 +00:00 · 2022-11-21 13:03:05 +00:00 · ebc39a4ae9
commit ebc39a4ae9
parent 065e0df906 3678d500b4
2 changed files with 1010 additions and 1 deletions
--- a/backport-CVE-2022-42898-third_party-heimdal-PAC-parse-integer.patch
+++ b/backport-CVE-2022-42898-third_party-heimdal-PAC-parse-integer.patch
--- a/samba.spec
+++ b/samba.spec
@ -48,7 +48,7 @@

 Name:           samba
 Version:        4.17.2
-Release:        1
+Release:        2

 Summary:        A suite for Linux to interoperate with Windows
 License:        GPLv3+ and LGPLv3+
@ -66,6 +66,7 @@ Source8:        usershares.conf.vendor

 Source201:      README.downgrade

+Patch0001:      backport-CVE-2022-42898-third_party-heimdal-PAC-parse-integer.patch

 BuildRequires: avahi-devel bison dbus-devel docbook-style-xsl e2fsprogs-devel flex gawk gnupg2 gnutls-devel >= 3.4.7 gpgme-devel
 BuildRequires: jansson-devel krb5-devel >= %{required_mit_krb5} libacl-devel libaio-devel libarchive-devel libattr-devel 
@ -3468,6 +3469,12 @@ fi
 %endif

 %changelog
+* Mon Nov 21 2022 zhouyihang <zhouyihang3@h-partners.com> - 4.17.2-2
+- Type:cves
+- ID:CVE-2022-42898
+- SUG:NA
+- DESC:fix CVE-2022-42898
+
 * Tue Nov 08 2022 xinghe <xinghe2@h-partners.com> - 4.17.2-1
 - Type:enhancement
 - ID:NA