Update samba42 and samba43 to the latest versions. A lot of fixes are made to fix the fixes in the previous security fixes :)

* BUG 11841: Fix NT_STATUS_ACCESS_DENIED when accessing Windows
  public share.
* BUG 11847: Only validate MIC if "map to guest" is not being used.
* BUG 11849: auth/ntlmssp: Add ntlmssp_{client,server}:force_old_spnego
  option for testing.
* BUG 11850: NetAPP SMB servers don't negotiate NTLMSSP_SIGN.
* BUG 11858: Allow anonymous smb connections.
* BUG 11870: Fix ads_sasl_spnego_gensec_bind(KRB5).
* BUG 11872: Fix 'wbinfo -u' and 'net ads search'.

1 files changed, 11 insertions, 0 deletions

diff --git a/net/samba42/files/patch-source3_client_smbspool_krb5_wrapper.c b/net/samba42/files/patch-source3_client_smbspool_krb5_wrapper.c
new file mode 100644
index 000000000000..4cc0fe1622a2
--- /dev/null
+++ b/net/samba42/files/patch-source3_client_smbspool_krb5_wrapper.c
@@ -0,0 +1,11 @@
+--- source3/client/smbspool_krb5_wrapper.c.orig	2016-04-21 00:26:35.874203000 +0000
++++ source3/client/smbspool_krb5_wrapper.c	2016-04-21 00:47:23.148722000 +0000
+@@ -195,7 +195,7 @@
+ 	 * Make sure we do not have LD_PRELOAD or other security relevant
+ 	 * environment variables set.
+ 	 */
+-	clearenv();
++	environ = NULL;
+ 
+ 	CUPS_SMB_DEBUG("Setting KRB5CCNAME to '%s'", gen_cc);
+ 	setenv("KRB5CCNAME", gen_cc, 1);