Re: Fwd: [Announce] Samba 4.6.1, 4.5.7 and 4.4.12 Security Releases Available for Download

To: Mathieu Parent <math.parent@gmail.com>
Cc: "debian-lts@lists.debian.org" <debian-lts@lists.debian.org>, Debian Samba Maintainers <pkg-samba-maint@lists.alioth.debian.org>, Salvatore Bonaccorso <carnil@debian.org>, Debian Security Team <team@security.debian.org>
Subject: Re: Fwd: [Announce] Samba 4.6.1, 4.5.7 and 4.4.12 Security Releases Available for Download
From: Roberto C. Sánchez <roberto@connexer.com>
Date: Wed, 29 Mar 2017 21:54:21 -0400
Message-id: <[🔎] 20170330015421.GA25377@connexer.com>
Mail-followup-to: Mathieu Parent <math.parent@gmail.com>, "debian-lts@lists.debian.org" <debian-lts@lists.debian.org>, Debian Samba Maintainers <pkg-samba-maint@lists.alioth.debian.org>, Salvatore Bonaccorso <carnil@debian.org>, Debian Security Team <team@security.debian.org>
In-reply-to: <[🔎] CAFX5sbxm86HujdZtX4d8DvGnmUVBVuRaknhQVENya9dieLkNoQ@mail.gmail.com>
References: <20170323091117.GA19027@carrie> <[🔎] CAFX5sbxm+woshfjR9dwmCKPexVssnrFwGGTYNBN=kSDeVtzfBg@mail.gmail.com> <[🔎] 20170326123916.GE28307@connexer.com> <[🔎] CAFX5sbwBk0NtL2tP-A6aKXN_ffnA7Th4gL-5yUKQ7ASKre5-DA@mail.gmail.com> <[🔎] 20170328105549.GD13953@connexer.com> <[🔎] CABY6=0mk2_dgj0EF6zoS-tNtCr-D9bcEPBt=8LmSDyerSnYdDg@mail.gmail.com> <[🔎] CAFX5sbxm86HujdZtX4d8DvGnmUVBVuRaknhQVENya9dieLkNoQ@mail.gmail.com>

On Tue, Mar 28, 2017 at 10:18:07PM +0200, Mathieu Parent wrote:
> 2017-03-28 21:07 GMT+02:00 Ola Lundqvist <ola@inguza.com>:
> > Hi Mathieu and Roberto
> 
> Hi,
> 
> > Mathieu, do you mean that they patches should apply cleanly and if they do
> > not, then we have missed some other important patch, or do you just mean
> > that they should generally apply cleanly?
> 
> I don't know for sure, but I think that if a hunk doesn't apply it is
> an indication of
> a change that may be a requirement.
> 
> For Roberto question on patch not applicable can be explained by:
> https://git.samba.org/?p=samba.git;a=commitdiff;h=8234c6a3c7
> 
> This doesn't look to be a requirement (not related to path traversal).
> 
I agree that it does not appear related.

> > I'm asking as it is rather expected that patches do not apply cleanly when
> > we are dealing with these old versions in wheezy. I do not want to give a
> > precise estimate but something between 20 and 60% of the patches that I have
> > applied to the packages I have done updates to in wheezy have not applied
> > cleanly. Usually it is just minor things, but in some cases quite a lot of
> > work have to be put in understanding the problem and finding out a new fix.
> >
> > We should not be afraid to do that kind of work.
> >
> > We do have the possibility to update to the latest software also in wheezy
> > but that should really be done as a last resort, or only for packages that
> > have a very good reputation on backwards compatibility. At least that is how
> > I have understood the current practices. I mean we do not want to introduce
> > unnecessary regressions.
> 
> The 3.6 branch was in maintenance mode since 2012-12-11, i.e after 3.6.10.
> So it is probably better to only cherry-pick the fixes and continue
> like Roberto did.
> 
OK.  I will continue working on integrating the patch from upstream.

> I can help the testing.
> 
I will announce when I have packages available for testing.

Regards,

-Roberto

-- 
Roberto C. Sánchez
http://people.connexer.com/~roberto
http://www.connexer.com

Reply to:

References:
- Fwd: [Announce] Samba 4.6.1, 4.5.7 and 4.4.12 Security Releases Available for Download
  - From: Mathieu Parent <math.parent@gmail.com>
- Re: Fwd: [Announce] Samba 4.6.1, 4.5.7 and 4.4.12 Security Releases Available for Download
  - From: Roberto C. Sánchez <roberto@connexer.com>
- Re: Fwd: [Announce] Samba 4.6.1, 4.5.7 and 4.4.12 Security Releases Available for Download
  - From: Mathieu Parent <math.parent@gmail.com>
- Re: Fwd: [Announce] Samba 4.6.1, 4.5.7 and 4.4.12 Security Releases Available for Download
  - From: Roberto C. Sánchez <roberto@connexer.com>
- Re: Fwd: [Announce] Samba 4.6.1, 4.5.7 and 4.4.12 Security Releases Available for Download
  - From: Ola Lundqvist <ola@inguza.com>
- Re: Fwd: [Announce] Samba 4.6.1, 4.5.7 and 4.4.12 Security Releases Available for Download
  - From: Mathieu Parent <math.parent@gmail.com>

Prev by Date: Re: exim4 & libgnutls26: "A TLS packet with unexpected length was received."
Next by Date: Re: Bug#761945: fixing links for DLAs in the security tracker
Previous by thread: Re: Fwd: [Announce] Samba 4.6.1, 4.5.7 and 4.4.12 Security Releases Available for Download
Next by thread: Re: Fwd: [Announce] Samba 4.6.1, 4.5.7 and 4.4.12 Security Releases Available for Download
Index(es):
- Date
- Thread