Release Planning for Samba 4.16

From SambaWiki

Samba 4.16 is in the Maintenance Mode.

Release blocking bugs

Samba 4.16.9

(Updated 15-December-2022)

  • Thursday, February 16 2023 - Planned release date for Samba 4.16.9.

Samba 4.16.8

(Updated 15-December-2022)

  • Thursday, December 15 2022 - Samba 4.16.8 has been released as a Security Release to address the following defects:
    • CVE-2022-37966 (This is the Samba CVE for the Windows Kerberos RC4-HMAC Elevation of Privilege Vulnerability disclosed by Microsoft on Nov 8 2022)
    • CVE-2022-37967 (This is the Samba CVE for the Windows Kerberos Elevation of Privilege Vulnerability disclosed by Microsoft on Nov 8 2022)
    • CVE-2022-38023 (The "RC4" protection of the NetLogon Secure channel uses the same algorithms as rc4-hmac cryptography in Kerberos, and so must also be assumed to be weak)
 Release Notes Samba 4.16.8

Samba 4.16.7

(Updated 15-November-2022)

  • Tuesday, November 15 2022 - Samba 4.16.7 has been released as a Security Release to address the following defects:
    • CVE-2022-42898 (Samba's Kerberos libraries and AD DC failed to guard against integer overflows when parsing a PAC on a 32-bit system, which allowed an attacker with a forged PAC to corrupt the heap)
 Release Notes Samba 4.16.7

Samba 4.16.6

(Updated 25-October-2022)

  • Tuesday, October 25 2022 - Samba 4.16.6 has been released as a Security Release to address the following defect:
    • CVE-2022-3437 (There is a limited write heap buffer overflow in the GSSAPI unwrap_des() and unwrap_des3() routines of Heimdal (included in Samba))
 Release Notes Samba 4.16.6

Samba 4.16.5

(Updated 07-September-2022)

  • Wednesday, September 07 2022 - Samba 4.16.5 has been released.
 Release Notes Samba 4.16.5

Samba 4.16.4

(Updated 27-July-2022)

  • Wednesday, July 27 2022 - Samba 4.16.4 has been released as a Security Release to address the following defects:
    • CVE-2022-2031 (Samba AD users can bypass certain restrictions associated with changing passwords)
    • CVE-2022-32744 (Samba AD users can forge password change requests for any user)
    • CVE-2022-32745 (Samba AD users can crash the server process with an LDAP add or modify request)
    • CVE-2022-32746 (Samba AD users can induce a use-after-free in the server process with an LDAP add or modify request)
    • CVE-2022-32742 (Server memory information leak via SMB1)
 Release Notes Samba 4.16.4

Samba 4.16.3

(Updated 18-July-2022)

  • Monday, July 18 2022 - Samba 4.16.3 has been released.
 Release Notes Samba 4.16.3

Samba 4.16.2

(Updated 13-June-2022)

  • Monday, June 13 2022 - Samba 4.16.2 has been released.
 Release Notes Samba 4.16.2

Samba 4.16.1

(Updated 2-May-2022)

  • Monday, May 2 2022 - Samba 4.16.1 has been released.
 Release Notes Samba 4.16.1

Samba 4.16.0

(Updated 21-March-2022)

  • Monday, March 21 2022 - Samba 4.16.0 has been released.
 Release Notes Samba 4.16.0

Samba 4.16.0rc5

(Updated 8-March-2022)

  • Tuesday, March 8 2022 - Samba 4.16.0rc5 has been released.
 Release Notes Samba 4.16.0rc5

Samba 4.16.0rc4

(Updated 1-March-2022)

  • Tuesday, March 1 2022 - Samba 4.16.0rc4 has been released.
 Release Notes Samba 4.16.0rc4

Samba 4.16.0rc3

(Updated 15-February-2022)

  • Tuesday, February 15 2022 - Samba 4.16.0rc3 has been released.
 Release Notes Samba 4.16.0rc3

Samba 4.16.0rc2

(Updated 31-January-2022)

  • Monday, January 31 2022 - Samba 4.16.0rc2 has been released.
 Release Notes Samba 4.16.0rc2

Samba 4.16.0rc1

(Updated 24-January-2022)

  • Monday, January 24 2022 - Samba 4.16.0rc1 has been released.
 Release Notes Samba 4.16.0rc1