Bug#1109448: unblock: samba/2:4.22.3+dfsg-4
On 27.07.2025 17:44, Ivo De Decker wrote:
Hi,
On Tue, Jul 22, 2025 at 02:15:21PM +0300, Michael Tokarev wrote:
[...]
Yet I think this change is worth the effort to have in
trixie (finally!).
We are very late in the cycle, and this bug has been around for a long time.
Given the risk that this might break user logins, I would prever if this
change was reverted and kept for forky.
It doesn't actually break logins, it finally makes logins to
work the way they were intended to work.
Note that "the risk that this might break user logins" was almost a direct
quote from you in https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907318#22
Heh. Yeah. It was my first impression without looking at the actual
details. Now when I looked, and especially when I hit the original
issue myself and was really surprised, - I understand implications
much better, and am significantly more confident in this change.
Hopefully this clears things up and makes the change to look
much less problematic.
Thanks for the clarification. I still think it's unfortunate that this was
added so late in the freeze, but I'll unblock it. Let's hope for the best!
Yes, the timing is definitely unfortunate. But that's what we have :)
It's an important security issue, it should be fixed - I don't
understand how it was there for so long and no one complained Very
Loudly, even assigning a CVE# for it. Another question is whenever
the fix is correct or not. But at least it *looks* correct.
Thank you very much for the work on this and for the unblock!
/mjt
Reply to: