Displaying 20 results from an estimated 10000 matches similar to: "[Announce] Samba 3.6.4, 3.5.14 and 3.4.16 Security Releases Available"
2012 Apr 17
1
CVE-2012-1182 patches
Hi,
We are using Samba 3.4.2 on Oracle Solaris 10 UNIX server. I am looking at
the samba site for patches for the CVE-2012-1182 vulnerability, but the
closest patch versions I see are for samba 3.4.15 & 3.4.16.
Is there a specific patch to fix samba 3.4.2?
Also, since we are patching, is there a cluster of patches available
specifically for samba 3.4.2?
Can you please point me to the links
2009 Apr 30
1
[Announce] Samba 3.4.0pre1 Available for Download
Release Announcements
=====================
This is the first preview release of Samba 3.4. This is *not*
intended for production environments and is designed for testing
purposes only. Please report any defects via the Samba bug reporting
system at https://bugzilla.samba.org/.
Major enhancements in Samba 3.4.0 include:
------------------------------------------
General changes:
o Samba4 and
2009 Apr 30
1
[Announce] Samba 3.4.0pre1 Available for Download
Release Announcements
=====================
This is the first preview release of Samba 3.4. This is *not*
intended for production environments and is designed for testing
purposes only. Please report any defects via the Samba bug reporting
system at https://bugzilla.samba.org/.
Major enhancements in Samba 3.4.0 include:
------------------------------------------
General changes:
o Samba4 and
2011 Aug 04
3
[Announce] Samba 3.5.11 Available for Download
===================================================================
"Birthdays are nature's way of
telling us to eat more cake."
Source Unknown
==================================================================
Release Announcements
=====================
This is the latest stable release of Samba 3.5.
Major enhancements in Samba 3.5.11 include:
o Fix access to
2011 Aug 04
3
[Announce] Samba 3.5.11 Available for Download
===================================================================
"Birthdays are nature's way of
telling us to eat more cake."
Source Unknown
==================================================================
Release Announcements
=====================
This is the latest stable release of Samba 3.5.
Major enhancements in Samba 3.5.11 include:
o Fix access to
2009 Jul 03
2
[Announce] Samba 3.4.0 Available for Download
=================================================================
"Always keep an open mind and a
compassionate heart."
Phil Jackson
=================================================================
Release Announcements
=====================
This is the first stable release of Samba 3.4.
Major enhancements in Samba 3.4.0 include:
2009 Jul 03
2
[Announce] Samba 3.4.0 Available for Download
=================================================================
"Always keep an open mind and a
compassionate heart."
Phil Jackson
=================================================================
Release Announcements
=====================
This is the first stable release of Samba 3.4.
Major enhancements in Samba 3.4.0 include:
2014 Mar 11
1
[Announce] Samba 4.1.6, 4.0.16 and 3.6.23 Security Releases Available
Release Announcements
---------------------
Samba 4.1.6, 4.0.16 and 3.6.23 have been issued as security releases in order
to address CVE-2013-4496 (Password lockout not enforced for SAMR password
changes) and CVE-2013-6442 (smbcacls can remove a file or directory ACL by
mistake). Please note that Samba 3.6.23 is not affected by CVE-2013-6442.
o CVE-2013-4496:
Samba versions 3.4.0 and above
2014 Mar 11
1
[Announce] Samba 4.1.6, 4.0.16 and 3.6.23 Security Releases Available
Release Announcements
---------------------
Samba 4.1.6, 4.0.16 and 3.6.23 have been issued as security releases in order
to address CVE-2013-4496 (Password lockout not enforced for SAMR password
changes) and CVE-2013-6442 (smbcacls can remove a file or directory ACL by
mistake). Please note that Samba 3.6.23 is not affected by CVE-2013-6442.
o CVE-2013-4496:
Samba versions 3.4.0 and above
2009 Jun 19
1
[Announce] Samba 3.4.0rc1 Available for Download
Release Announcements
=====================
This is the first release candidate of Samba 3.4. This is *not*
intended for production environments and is designed for testing
purposes only. Please report any defects via the Samba bug reporting
system at https://bugzilla.samba.org/.
Major enhancements in Samba 3.4.0 include:
------------------------------------------
Configuration changes:
o
2009 Jun 19
1
[Announce] Samba 3.4.0rc1 Available for Download
Release Announcements
=====================
This is the first release candidate of Samba 3.4. This is *not*
intended for production environments and is designed for testing
purposes only. Please report any defects via the Samba bug reporting
system at https://bugzilla.samba.org/.
Major enhancements in Samba 3.4.0 include:
------------------------------------------
Configuration changes:
o
2023 Jul 05
1
[Announce] Samba 4.18.4 Available for Download
Release Announcements
---------------------
This is the latest stable release of the Samba 4.18 release series.
Changes since 4.18.3
--------------------
o? Douglas Bagnall <douglas.bagnall at catalyst.net.nz>
?? * BUG 15404: Backport --pidl-developer fixes.
o? Samuel Cabrero <scabrero at samba.org>
?? * BUG 14030: Named crashes on DLZ zone update.
o? Bj?rn Jacke <bj at
2023 Jul 05
1
[Announce] Samba 4.18.4 Available for Download
Release Announcements
---------------------
This is the latest stable release of the Samba 4.18 release series.
Changes since 4.18.3
--------------------
o? Douglas Bagnall <douglas.bagnall at catalyst.net.nz>
?? * BUG 15404: Backport --pidl-developer fixes.
o? Samuel Cabrero <scabrero at samba.org>
?? * BUG 14030: Named crashes on DLZ zone update.
o? Bj?rn Jacke <bj at
2021 Nov 09
2
[Announce] Samba 4.15.2, 4.14.10, 4.13.14 Security Releases are available for Download
Release Announcements
---------------------
These are security releases in order to address the following defects:
o CVE-2016-2124: SMB1 client connections can be downgraded to plaintext
authentication.
https://www.samba.org/samba/security/CVE-2016-2124.html
o CVE-2020-25717: A user on the domain can become root on domain members.
2021 Nov 09
2
[Announce] Samba 4.15.2, 4.14.10, 4.13.14 Security Releases are available for Download
Release Announcements
---------------------
These are security releases in order to address the following defects:
o CVE-2016-2124: SMB1 client connections can be downgraded to plaintext
authentication.
https://www.samba.org/samba/security/CVE-2016-2124.html
o CVE-2020-25717: A user on the domain can become root on domain members.
2023 Jul 19
1
[Announce] Samba 4.18.5, 4.17.10., 4.16.11 Security Releases are available for Download
Release Announcements
---------------------
This are security releases in order to address the following defects:
o CVE-2022-2127:? When winbind is used for NTLM authentication, a
maliciously
????????????????? crafted request can trigger an out-of-bounds read in
winbind
????????????????? and possibly crash it.
https://www.samba.org/samba/security/CVE-2022-2127.html
o CVE-2023-3347:? SMB2
2023 Jul 19
1
[Announce] Samba 4.18.5, 4.17.10., 4.16.11 Security Releases are available for Download
Release Announcements
---------------------
This are security releases in order to address the following defects:
o CVE-2022-2127:? When winbind is used for NTLM authentication, a
maliciously
????????????????? crafted request can trigger an out-of-bounds read in
winbind
????????????????? and possibly crash it.
https://www.samba.org/samba/security/CVE-2022-2127.html
o CVE-2023-3347:? SMB2
2022 Dec 15
1
[Announce] Samba 4.17.4, 4.16.8 and 4.15.13 Security Releases are available for Download
Release Announcements
---------------------
This are security releases in order to address the following defects:
o CVE-2022-37966: This is the Samba CVE for the Windows Kerberos
????????????????? RC4-HMAC Elevation of Privilege Vulnerability
????????????????? disclosed by Microsoft on Nov 8 2022.
????????????????? A Samba Active Directory DC will issue weak rc4-hmac
?????????????????
2022 Dec 15
1
[Announce] Samba 4.17.4, 4.16.8 and 4.15.13 Security Releases are available for Download
Release Announcements
---------------------
This are security releases in order to address the following defects:
o CVE-2022-37966: This is the Samba CVE for the Windows Kerberos
????????????????? RC4-HMAC Elevation of Privilege Vulnerability
????????????????? disclosed by Microsoft on Nov 8 2022.
????????????????? A Samba Active Directory DC will issue weak rc4-hmac
?????????????????
2017 Sep 27
1
[Announce] Samba 4.6.8, 4.5.14 and 4.4.16 Security Releases Available
Hi Team,
Workaround for
CVE-2017-12151 :- client max protocol = NT1 and
CVE-2017-12163 :- server min protocol = SMB2_02
are contradicting to each other.
CVE-2017-12151 impacts on SMB3 protocol but workaound suggst to use NT1.
I have below queries regarding this.
Is SMB2 protocol also impacted by CVE-2017-12151 ?
Can i use client max protocol = SMB2 so that it does not contradict with