Announce Samba 4.1.3, 4.0.13 and 3.6.22.

Signed-off-by: Karolin Seeger <kseeger@samba.org>

diff --git a/generated_news/latest_10_bodies.html b/generated_news/latest_10_bodies.html
index 2d8248aeb09bfccf7aa3d2208e592d83eee375f4..87d128a96a5244d3c075e7b10f0890e72dc534e6 100644 (file)
--- a/generated_news/latest_10_bodies.html
+++ b/generated_news/latest_10_bodies.html
@@ -1,3 +1,26 @@
+       <h5><a name="4.1.3">09 December 2013</a></h5>
+       <p class="headline">Samba 4.1.3, 4.0.13 and 3.6.22 <b>Security
+       Releases</b> Available for Download</p>
+       <p>These are security releases in order to address
+       <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4408">CVE-2013-4408</a>
+       (<b>DCE-RPC fragment length field is incorrectly checked</b>) and
+       <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6150">CVE-2012-6150</a>
+       (<b>pam_winbind login without require_membership_of restrictions</b>).
+       </p>
+
+       <p>The uncompressed tarballs and patch files have been signed
+       using GnuPG (ID 6568B7EA).</p>
+       <p>
+       The source code can be downloaded here:
+       <li><a href="http://samba.org/samba/ftp/stable/samba-4.1.3.tar.gz">download
+       Samba 4.1.3</a>,</li>
+       <li><a href="http://samba.org/samba/ftp/stable/samba-4.0.13.tar.gz">download
+       Samba 4.0.13</a>,</li>
+       <li><a href="http://samba.org/samba/ftp/stable/samba-3.6.22.tar.gz">download
+       Samba 3.6.22</a>.</li>
+       </p>
+
+
        <h5><a name="3.6.21">29 November 2013</a></h5>
        <p class="headline">Samba 3.6.21 Available for Download</p>
        <p>This is the latest stable release of the Samba 3.6 series.</p>
@@ -119,16 +142,3 @@ using GnuPG (ID 6568B7EA).  The source code can be
 <a href="https://download.samba.org/pub/samba/rc/samba-4.1.0rc3.tar.gz">downloaded
 now</a>. See <a href="https://download.samba.org/pub/samba/rc/WHATSNEW-4.1.0rc3.txt">the
 release notes for more info</a>.</p>
-
-
-       <h5><a name="4.0.9">20 August 2013</a></h5>
-       <p class="headline">Samba 4.0.9 Available for Download</p>
-       <p>This is the latest stable release of the Samba 4.0 series.</p>
-
-<p>The uncompressed tarballs and patch files have been signed
-using GnuPG (ID 6568B7EA).  The source code can be
-<a href="http://samba.org/samba/ftp/stable/samba-4.0.9.tar.gz">downloaded
-now</a>. A <a href="http://samba.org/samba/ftp/patches/patch-4.0.8-4.0.9.diffs.gz">
-patch against Samba 4.0.8</a> is also available. See
-<a href="http://samba.org/samba/history/samba-4.0.9.html"> the release notes
- for more info</a>.</p>

diff --git a/generated_news/latest_10_headlines.html b/generated_news/latest_10_headlines.html
index 73e5a6469001f87e6dab2d1df69c0fffdd870ac3..673ff16b752c5419f16ed0f8becbae5c728156c2 100644 (file)
--- a/generated_news/latest_10_headlines.html
+++ b/generated_news/latest_10_headlines.html
@@ -1,4 +1,8 @@
 <ul>
+       <li> 09 December 2013 <a href="#4.1.3">Samba 4.1.3, 4.0.13
+       and 3.6.22 Security Releases Available for Download (CVE-2013-4408 and
+       CVE-2012-6150)</a></li>
+
        <li> 29 November 2013 <a href="#3.6.21">Samba 3.6.21 Available for Download</a></li>
 
        <li> 22 November 2013 <a href="#4.1.2">Samba 4.1.2 Available for Download</a></li>
@@ -20,6 +24,4 @@
 
        <li> 11 September 2013 <a href="#4.1.0rc3">Samba 4.1.0rc3 Available for
        Download</a></li>
-
-       <li> 20 August 2013 <a href="#4.0.9">Samba 4.0.9 Available for Download</a></li>
 </ul>

diff --git a/generated_news/latest_2_bodies.html b/generated_news/latest_2_bodies.html
index 0b905cfdcb087817e5f55386379abbc7e98faaba..05ef81955a4ef605abdb0cf4756843d4ca944c18 100644 (file)
--- a/generated_news/latest_2_bodies.html
+++ b/generated_news/latest_2_bodies.html
@@ -1,3 +1,26 @@
+       <h5><a name="4.1.3">09 December 2013</a></h5>
+       <p class="headline">Samba 4.1.3, 4.0.13 and 3.6.22 <b>Security
+       Releases</b> Available for Download</p>
+       <p>These are security releases in order to address
+       <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4408">CVE-2013-4408</a>
+       (<b>DCE-RPC fragment length field is incorrectly checked</b>) and
+       <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6150">CVE-2012-6150</a>
+       (<b>pam_winbind login without require_membership_of restrictions</b>).
+       </p>
+
+       <p>The uncompressed tarballs and patch files have been signed
+       using GnuPG (ID 6568B7EA).</p>
+       <p>
+       The source code can be downloaded here:
+       <li><a href="http://samba.org/samba/ftp/stable/samba-4.1.3.tar.gz">download
+       Samba 4.1.3</a>,</li>
+       <li><a href="http://samba.org/samba/ftp/stable/samba-4.0.13.tar.gz">download
+       Samba 4.0.13</a>,</li>
+       <li><a href="http://samba.org/samba/ftp/stable/samba-3.6.22.tar.gz">download
+       Samba 3.6.22</a>.</li>
+       </p>
+
+
        <h5><a name="3.6.21">29 November 2013</a></h5>
        <p class="headline">Samba 3.6.21 Available for Download</p>
        <p>This is the latest stable release of the Samba 3.6 series.</p>
@@ -8,17 +31,4 @@ using GnuPG (ID 6568B7EA).  The source code can be
 now</a>. A <a href="http://samba.org/samba/ftp/patches/patch-3.6.20-3.6.21.diffs.gz">
 patch against Samba 3.6.20</a> is also available. See
 <a href="http://samba.org/samba/history/samba-3.6.21.html"> the release notes
- for more info</a>.</p>
-
-
-       <h5><a name="4.1.2">22 November 2013</a></h5>
-       <p class="headline">Samba 4.1.2 Available for Download</p>
-       <p>This is the latest stable release of the Samba 4.1 series.</p>
-
-<p>The uncompressed tarballs and patch files have been signed
-using GnuPG (ID 6568B7EA).  The source code can be
-<a href="http://samba.org/samba/ftp/stable/samba-4.1.2.tar.gz">downloaded
-now</a>. A <a href="http://samba.org/samba/ftp/patches/patch-4.1.1-4.1.2.diffs.gz">
-patch against Samba 4.1.1</a> is also available. See
-<a href="http://samba.org/samba/history/samba-4.1.2.html"> the release notes
  for more info</a>.</p>

diff --git a/history/header_history.html b/history/header_history.html
index d3820ad8dcd12bec9504ffdf53c4b5b1507b863f..019141dab60a90a5587c967c25521c5d79ec2b05 100755 (executable)
--- a/history/header_history.html
+++ b/history/header_history.html
@@ -10,9 +10,11 @@
                <li class="navSub">
                        <ul>
                        <li><a href="/samba/security/CVE-2013-0454.html">CVE-2013-0454</a></li>
+                       <li><a href="samba-4.1.3.html">samba-4.1.3</a></li>
                        <li><a href="samba-4.1.2.html">samba-4.1.2</a></li>
                        <li><a href="samba-4.1.1.html">samba-4.1.1</a></li>
                        <li><a href="samba-4.1.0.html">samba-4.1.0</a></li>
+                       <li><a href="samba-4.0.13.html">samba-4.0.13</a></li>
                        <li><a href="samba-4.0.12.html">samba-4.0.12</a></li>
                        <li><a href="samba-4.0.11.html">samba-4.0.11</a></li>
                        <li><a href="samba-4.0.10.html">samba-4.0.10</a></li>
@@ -26,6 +28,7 @@
                        <li><a href="samba-4.0.2.html">samba-4.0.2</a></li>
                        <li><a href="samba-4.0.1.html">samba-4.0.1</a></li>
                        <li><a href="samba-4.0.0.html">samba-4.0.0</a></li>
+                       <li><a href="samba-3.6.22.html">samba-3.6.22</a></li>
                        <li><a href="samba-3.6.21.html">samba-3.6.21</a></li>
                        <li><a href="samba-3.6.20.html">samba-3.6.20</a></li>
                        <li><a href="samba-3.6.19.html">samba-3.6.19</a></li>

diff --git a/history/security.html b/history/security.html
index af0dd43bf7082cd543a47ebb9e658d78030b6e0a..4065209667181465faa733ac9d926537f7349856 100755 (executable)
--- a/history/security.html
+++ b/history/security.html
@@ -21,6 +21,29 @@ link to full release notes for each release.</p>
        <td><em>Details</em></td>
       </tr>
 
+    <tr>
+       <td>09 Dec 2013</td>
+       <td><a href="/samba/ftp/patches/security/samba-4.1.2-CVE-2013-4408-CVE-2012-6150.patch">
+       patch for Samba 4.1.2</a>
+       <a href="/samba/ftp/patches/security/amba-4.0.12-CVE-2013-4408-CVE-2012-6150.patch">
+       patch for Samba 4.0.12</a>
+       <a href="/samba/ftp/patches/security/samba-3.6.21-CVE-2013-4408-CVE-2012-6150.patch">
+       patch for Samba 3.6.21</a>
+       <a href="/samba/ftp/patches/security/samba-3.5.22-CVE-2013-4408.patch">
+       patch for Samba 3.5.22</a>
+       <a href="/samba/ftp/patches/security/samba-3.4.17-CVE-2013-4408.patch">
+       patch for Samba 3.4.17</a>
+       <td>DCE-RPC fragment length field is incorrectly checked, pam_winbind
+               login without require_membership_of restrictions.</td>
+       <td>please refer to the advisories</td>
+       <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4408">CVE-2013-4408</a>, 
+           <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6150">CVE-2012-6150</a>
+       </td>
+       <td><a href="/samba/security/CVE-2013-4408">Announcement</a>
+           <a href="/samba/security/CVE-2012-6150">Announcement</a>
+       </td>
+    </tr>
+
     <tr>
        <td>11 Nov 2013</td>
        <td><a href="/samba/ftp/patches/security/samba-4.1.0-CVE-2013-4475-CVE-2013-4476.patch">