Hi, this is a heads-up that there will be important Samba security updates on Wednesday, May 24th (~ 6-9am UTC). Please make sure that your Samba servers will be updated immediately after the release! Cheers, Karolin -- Karolin Seeger https://samba.org/~kseeger/ Release Manager Samba Team https://samba.org Team Lead Samba SerNet https://sernet.de
Hi, We are using Samba 4.6.3 as Active Directory Server only and not as a file server. Do you suggest that we apply this patch on Samba AD as well? -- Thanks & Regards, Anantha Raghava DISCLAIMER: This e-mail communication and any attachments may be privileged and confidential to eXza Technology Consulting & Services, and are intended only for the use of the recipients named above If you are not the addressee you may not copy, forward, disclose or use any part of it. If you have received this message in error, please delete it and all copies from your system and notify the sender immediately by return e-mail. Internet communications cannot be guaranteed to be timely, secure, error or virus-free. The sender does not accept liability for any errors or omissions. Do not print this e-mail unless required. Save Paper & trees. On 22/05/17 2:07 PM, Karolin Seeger via samba wrote:> Hi, > > this is a heads-up that there will be important Samba security updates > on Wednesday, May 24th (~ 6-9am UTC). Please make sure that your Samba > servers will be updated immediately after the release! > > Cheers, > Karolin >
Andrew Bartlett
2017-May-29 07:06 UTC
[Samba] [SECURITY] CVE-2017-7494: Remote code execution from a writable share
On Mon, 2017-05-29 at 11:51 +0530, Anantha Raghava via samba wrote:> Hi, > > We are using Samba 4.6.3 as Active Directory Server only and not as a > file server. Do you suggest that we apply this patch on Samba AD as well?Yes, but the risk is less if only an administrator can write to [sysvol] and [netlogon]. Thanks, Andrew Bartlett -- Andrew Bartlett http://samba.org/~abartlet/ Authentication Developer, Samba Team http://samba.org Samba Developer, Catalyst IT http://catalyst.net.nz/services/samba