Release Planning for Samba 4.10

Revision as of 08:38, 2 July 2020 by Kseeger (talk | contribs)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Samba 4.10 is in the Security Fixes Only Mode.


Release blocking bugs


Samba 4.10.17

(Updated 02-Jul-2020)

  • Thursday, July 2 2020 - Samba 4.10.17 has been released as a Security Release to address the following defects:
    • CVE-2020-10730 (NULL pointer de-reference and use-after-free in Samba AD DC LDAP Server with ASQ, VLV and paged_results).
    • CVE-2020-10745 (Parsing and packing of NBT and DNS packets can consume excessive CPU).
    • CVE-2020-10760 (LDAP Use-after-free in Samba AD DC Global Catalog with paged_results and VLV).
    • CVE-2020-14303 (Empty UDP packet DoS in Samba AD DC nbtd).
 Release Notes Samba 4.10.17

Samba 4.10.16

(Updated 25-May-2020)

  • Monday, May 25 2020 - Samba 4.10.16 has been released as an additional bugfix release to address the following issues:
 Release Notes Samba 4.10.16

Samba 4.10.15

(Updated 28-April-2020)

  • Tuesday, April 28 2020 - Samba 4.10.15 has been released as a Security Release to address the following defects:
    • CVE-2020-10700 (Use-after-free in Samba AD DC LDAP Server with ASQ.)
    • CVE-2020-10704 (LDAP Denial of Service (stack overflow) in Samba AD DC.)
 Release Notes Samba 4.10.15

Samba 4.10.14

(Updated 26-March-2020)

  • Thursday, March 26 2020 - Samba 4.10.14 has been released as the last 4.10 bugfix release. There will be Security releases only beyond this point.
 Release Notes Samba 4.10.14.

Samba 4.10.13

(Updated 23-Jan-2020)

  • Thursday, January 23 2020 - Samba 4.10.13 has been released.
 Release Notes Samba 4.10.13.

Samba 4.10.12

(Updated 21-Jan-20120)

  • Tuesday, January 21 2020 - Samba 4.10.12 has been released as a Security Release to address the following defects:
    • CVE-2019-14902 (Replication of ACLs set to inherit down a subtree on AD Directory not automatic.)
    • CVE-2019-14907 (Crash after failed character conversion at log level 3 or above.)
    • CVE-2019-19344 (Use after free during DNS zone scavenging in Samba AD DC.)
 Release Notes Samba 4.10.12

Samba 4.10.11

(Updated 10-Dec-2019)

  • Tuesday, December 10 2019 - Samba 4.10.11 has been released as a Security Release to address the following defects:
    • CVE-2019-14861 (Samba AD DC zone-named record Denial of Service in DNS management server (dnsserver))
    • CVE-2019-14870 (DelegationNotAllowed not being enforced in protocol transition on Samba AD DC.)
 Release Notes Samba 4.10.11

Samba 4.10.10

(Updated 29-Oct-2019)

  • Tuesday, October 29 2019 - Samba 4.10.10 has been released as a Security Release to address the following defects:
    • CVE-2019-10218 (Client code can return filenames containing path separators.)
    • CVE-2019-14833 (Samba AD DC check password script does not receive the full password.)
    • CVE-2019-14847 (User with "get changes" permission can crash AD DC LDAP server via dirsync)
 Release Notes Samba 4.10.10

Samba 4.10.9

(Updated 17-Oct-2019)

  • Thursday, October 17 2019 - Samba 4.10.9 has been released.
 Release Notes Samba 4.10.9

Samba 4.10.8

(Updated 03-Sep-2019)

  • Tuesday, September 03 2019 - Samba 4.10.8 has been released as a Security Release in order to address:
    • CVE-2019-10197 (Combination of parameters and permissions can allow user to escape from the share path definition.)
 Release Notes Samba 4.10.8

Samba 4.10.7

(Updated 22-Aug-2019)

  • Thursday, August 22 2019 - Planned release date for Samba 4.10.7.
 Release Notes Samba 4.10.7

Samba 4.10.6

(Updated 08-Jul-2019)

  • Monday, July 8 2019 - Samba 4.10.6 has been released.
 Release Notes Samba 4.10.6

Samba 4.10.5

(Updated 19-Jun-2019)

  • Wednesday, June 19 2019 - Samba 4.10.5 has been released as a Security Release to address the following defects:
    • CVE-2019-12435 (Samba AD DC Denial of Service in DNS management server (dnsserver))
    • CVE-2019-12436 (Samba AD DC LDAP server crash (paged searches))
 Release Notes Samba 4.10.5

Samba 4.10.4

(Updated 22-May-2019)

  • Wednesday, May 22 2019 - Samba 4.10.4 has been released.
 Release Notes Samba 4.10.4

Samba 4.10.3

(Updated 14-May-2019)

  • Tuesday, May 14 2019 - Samba 4.10.3 has been released as a Security Release to address the following defect:
 Release Notes Samba 4.10.3

Samba 4.10.2

(Updated 08-April-2019)

  • Monday, Apr 08 2019 - Samba 4.10.2 has been released as a Security Release to address the following defects:
    • CVE-2019-3870 (World writable files in Samba AD DC private/ dir)
    • CVE-2019-3880 (Save registry file outside share as unprivileged user)
 Release Notes Samba 4.10.2

Samba 4.10.1

(Updated 03-April-2019)

  • Wednesday, April 03 2019 - Samba 4.10.1 has been released.
 Release Notes Samba 4.10.1

Samba 4.10.0

(Updated 19-March-2019)

  • Tuesday, March 19 2019 - Samba 4.10.0 has been released.
 Release Notes Samba 4.10.0

Samba 4.10.0rc1

(Updated 15-January-2019)

  • Tuesday, January 15 2019 - Samba 4.10.0rc1 has been released.
 Release Notes Samba 4.10.0rc1

Samba 4.10.0rc2

(Updated 06-February-2019)

  • Wednesday, February 6 2019 - Samba 4.10.0rc2 has been released.
 Release Notes Samba 4.10.0rc2

Samba 4.10.0rc3

(Updated 22-Ferbuary-2018)

  • Friday, February 22 2019 - Samba 4.10.0rc3 has been released.
 Release Notes Samba 4.10.0rc3

Samba 4.10.0rc4

(Updated 06-March-2019)

  • Wednesday, March 6 2019 - Samba 4.10.0rc4 has been released.
 Release Notes Samba 4.10.0rc4