From b2cc3a08917a1cc07c8f4ccd83768bb2d2a75143 Mon Sep 17 00:00:00 2001
From: Günther Deschner <gd@samba.org>
Date: Apr 28 2020 20:25:44 +0000
Subject: Update to Samba 4.11.8


resolves: #1825731, #1828870 - Security fixes for CVE-2020-10700
resolves: #1825734, #1828872 - Security fixes for CVE-2020-10704

Guenther

---

diff --git a/.gitignore b/.gitignore
index e6049ca..7c4a937 100644
--- a/.gitignore
+++ b/.gitignore
@@ -193,3 +193,5 @@ samba-3.6.0pre1.tar.gz
 /samba-4.11.6.tar.asc
 /samba-4.11.7.tar.xz
 /samba-4.11.7.tar.asc
+/samba-4.11.8.tar.xz
+/samba-4.11.8.tar.asc
diff --git a/samba.spec b/samba.spec
index bdd6899..5503b98 100644
--- a/samba.spec
+++ b/samba.spec
@@ -6,13 +6,13 @@
 # ctdb is enabled by default, you can disable it with: --without clustering
 %bcond_without clustering
 
-%define main_release 1
+%define main_release 0
 
-%define samba_version 4.11.7
+%define samba_version 4.11.8
 %define talloc_version 2.2.0
 %define tdb_version 1.4.2
 %define tevent_version 0.10.0
-%define ldb_version 2.0.9
+%define ldb_version 2.0.10
 # This should be rc1 or nil
 %define pre_release %nil
 
@@ -2275,6 +2275,7 @@ fi
 %{python3_sitearch}/samba/tests/__pycache__/hostconfig.*.pyc
 %{python3_sitearch}/samba/tests/__pycache__/join.*.pyc
 %{python3_sitearch}/samba/tests/__pycache__/krb5_credentials.*.pyc
+%{python3_sitearch}/samba/tests/__pycache__/ldap_raw.*.pyc
 %{python3_sitearch}/samba/tests/__pycache__/ldap_referrals.*.pyc
 %{python3_sitearch}/samba/tests/__pycache__/loadparm.*.pyc
 %{python3_sitearch}/samba/tests/__pycache__/libsmb.*.pyc
@@ -2456,6 +2457,7 @@ fi
 %{python3_sitearch}/samba/tests/kcc/kcc_utils.py
 %{python3_sitearch}/samba/tests/kcc/ldif_import_export.py
 %{python3_sitearch}/samba/tests/krb5_credentials.py
+%{python3_sitearch}/samba/tests/ldap_raw.py
 %{python3_sitearch}/samba/tests/ldap_referrals.py
 %{python3_sitearch}/samba/tests/libsmb.py
 %{python3_sitearch}/samba/tests/loadparm.py
@@ -3529,6 +3531,11 @@ fi
 %endif
 
 %changelog
+* Tue Apr 28 2020 Guenther Deschner <gdeschner@redhat.com> - 4.11.8-0
+- Update to Samba 4.11.8
+- resolves: #1825731, #1828870 - Security fixes for CVE-2020-10700
+- resolves: #1825734, #1828872 - Security fixes for CVE-2020-10704
+
 * Sun Apr 12 2020 Alexander Bokovoy <abokovoy@redhat.com> - 4.11.7-1
 - Revert SMBv1 POSIX stat use in libsmb by default
 - Resolves: rhbz#1801442
diff --git a/sources b/sources
index 0256c6e..a667ae0 100644
--- a/sources
+++ b/sources
@@ -1,2 +1,2 @@
-SHA512 (samba-4.11.7.tar.xz) = c67e33a48484817a3ab7ec32748c97ce3f0efa2c878c6d311fd02d1f9007d565666d9993614d71bf9f02a9ee81d5940cabd098e0042810f627444c9edc6c6630
-SHA512 (samba-4.11.7.tar.asc) = 4f91b3fb3a3939090097ed0ebd3cf5b2086720c5f4da6397f674673b171cddd2908dae489ba14221d49cd3ea439b4d9aaa7df8560dfc771cf03a669dd9f606fc
+SHA512 (samba-4.11.8.tar.xz) = 50de5458cf1e7635d0aec84e1f2379af361754215e0afc57b91e3b68dc5680ed7640ca2bc33ed8a058aac4897d8712abd1f5efe2a3db149456fec410b4a14f78
+SHA512 (samba-4.11.8.tar.asc) = caf7e02566a9afefd191f456b94b0ac27953b6b0a2d0509a5cb06211505daaa4b8e77c675e9a5c0a3cd12cc24be6cf31aecbf954e7fb476d1668a56f51c5046d