Hi, this is a heads-up that there will be important Samba security updates on Wednesday, May 24th (~ 6-9am UTC). Please make sure that your Samba servers will be updated immediately after the release! Cheers, Karolin -- Karolin Seeger samba.org/~kseeger Release Manager Samba Team samba.org Team Lead Samba SerNet sernet.de
Hi, We are using Samba 4.6.3 as Active Directory Server only and not as a file server. Do you suggest that we apply this patch on Samba AD as well? -- Thanks & Regards, Anantha Raghava DISCLAIMER: This e-mail communication and any attachments may be privileged and confidential to eXza Technology Consulting & Services, and are intended only for the use of the recipients named above If you are not the addressee you may not copy, forward, disclose or use any part of it. If you have received this message in error, please delete it and all copies from your system and notify the sender immediately by return e-mail. Internet communications cannot be guaranteed to be timely, secure, error or virus-free. The sender does not accept liability for any errors or omissions. Do not print this e-mail unless required. Save Paper & trees. On 22/05/17 2:07 PM, Karolin Seeger via samba wrote:> Hi, > > this is a heads-up that there will be important Samba security updates > on Wednesday, May 24th (~ 6-9am UTC). Please make sure that your Samba > servers will be updated immediately after the release! > > Cheers, > Karolin >
Andrew Bartlett
2017-May-29 07:06 UTC
[Samba] [SECURITY] CVE-2017-7494: Remote code execution from a writable share
On Mon, 2017-05-29 at 11:51 +0530, Anantha Raghava via samba wrote:> Hi, > > We are using Samba 4.6.3 as Active Directory Server only and not as a > file server. Do you suggest that we apply this patch on Samba AD as well?Yes, but the risk is less if only an administrator can write to [sysvol] and [netlogon]. Thanks, Andrew Bartlett -- Andrew Bartlett samba.org/~abartlet Authentication Developer, Samba Team samba.org Samba Developer, Catalyst IT catalyst.net.nz/services/samba