From 6980d56b3ab2ca8d5d7e354d1470fe7d2326e0d9 Mon Sep 17 00:00:00 2001
From: "Timur I. Bakeyev" <timur@FreeBSD.org>
Date: Wed, 28 Dec 2016 02:51:57 +0000
Subject: * Upgrade net/samba43 and net/samba44 to address multiple
 vulnerabilities * Switch port to use net/openldap24-sasl-client as some
 authorization methods don't work with plain openldap24-client. * Changed
 namespace used by vfs_fruit to be compatiable with net/netatalk3. * Removed
 old DNS crypto patch, as it SEEMS it was superseded by recent code changes.
 Please, notify me if you see that internal DNS doesn't handle signed requests
 properly anymore.

Security:	CVE-2016-2123
		CVE-2016-2125
		CVE-2016-2126
---
 net/samba44/files/patch-source3__smbd__open.c | 11 +++++++++++
 1 file changed, 11 insertions(+)
 create mode 100644 net/samba44/files/patch-source3__smbd__open.c

(limited to 'net/samba44/files/patch-source3__smbd__open.c')

diff --git a/net/samba44/files/patch-source3__smbd__open.c b/net/samba44/files/patch-source3__smbd__open.c
new file mode 100644
index 000000000000..96aa7dfae8aa
--- /dev/null
+++ b/net/samba44/files/patch-source3__smbd__open.c
@@ -0,0 +1,11 @@
+--- source3/smbd/open.c.orig	2016-12-25 13:08:58.349614000 +0000
++++ source3/smbd/open.c	2016-12-25 13:09:10.968754000 +0000
+@@ -3890,7 +3890,7 @@
+ 	unsigned int num_streams = 0;
+ 	TALLOC_CTX *frame = talloc_stackframe();
+ 	NTSTATUS status;
+-	bool saved_posix_pathnames;
++	bool saved_posix_pathnames = false;
+ 
+ 	status = vfs_streaminfo(conn, NULL, fname, talloc_tos(),
+ 				&num_streams, &stream_info);
-- 
cgit v1.2.3