Release Planning for Samba 4.18: Difference between revisions
From SambaWiki
(→Samba 4.18.1: Fix weekday) |
(Release Samba v4.18.1) |
||
Line 4: | Line 4: | ||
* [https://bugzilla.samba.org/buglist.cgi?bug_severity=regression&query_format=advanced&target_milestone=4.18 All 4.18 regression bugs] |
* [https://bugzilla.samba.org/buglist.cgi?bug_severity=regression&query_format=advanced&target_milestone=4.18 All 4.18 regression bugs] |
||
* [https://bugzilla.samba.org/buglist.cgi?bug_severity=regression&bug_status=UNCONFIRMED&bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&bug_status=VERIFIED&query_format=advanced&target_milestone=4.18 Unresolved 4.18 regression bugs] |
* [https://bugzilla.samba.org/buglist.cgi?bug_severity=regression&bug_status=UNCONFIRMED&bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&bug_status=VERIFIED&query_format=advanced&target_milestone=4.18 Unresolved 4.18 regression bugs] |
||
== Samba 4.18.2 == |
|||
⚫ | |||
⚫ | |||
== Samba 4.18.1 == |
== Samba 4.18.1 == |
||
⚫ | |||
<small>('''Updated 2023-March-29''')</small> |
|||
⚫ | |||
* Wednesday, March 29 2023 - [https://download.samba.org/pub/samba/stable/samba-4.18.1.tar.gz Samba 4.18.1] has been released as a '''Security Release''' to address the following defects: |
|||
** [https://www.samba.org/samba/security/CVE-2023-0225.html CVE-2023-0225] (An incomplete access check on dnsHostName allows authenticated but otherwise unprivileged users to delete this attribute from any object in the directory.) |
|||
** [https://www.samba.org/samba/security/CVE-2023-0922.html CVE-2023-0922] (The Samba AD DC administration tool, when operating against a remote LDAP server, will by default send new or reset passwords over a signed-only connection.) |
|||
** [https://www.samba.org/samba/security/CVE-2023-0614.html CVE-2023-0614] (The fix in 4.6.16, 4.7.9, 4.8.4 and 4.9.7 for CVE-2018-10919 Confidential attribute disclosure via LDAP filters was insufficient and an attacker may be able to obtain confidential BitLocker recovery keys from a Samba AD DC. Installations with such secrets in their Samba AD should assume they have been obtained and need replacing.) |
|||
[https://www.samba.org/samba/history/samba-4.18.1.html Release Notes Samba 4.18.1] |
|||
== Samba 4.18.0 == |
== Samba 4.18.0 == |
Revision as of 14:46, 29 March 2023
Samba 4.18 is the current stable release series.
Release blocking bugs
Samba 4.18.2
(Updated 29-March-2023)
- Wednesday, April 19 2023 - Planned release date for Samba 4.18.2.
Samba 4.18.1
(Updated 2023-March-29)
- Wednesday, March 29 2023 - Samba 4.18.1 has been released as a Security Release to address the following defects:
- CVE-2023-0225 (An incomplete access check on dnsHostName allows authenticated but otherwise unprivileged users to delete this attribute from any object in the directory.)
- CVE-2023-0922 (The Samba AD DC administration tool, when operating against a remote LDAP server, will by default send new or reset passwords over a signed-only connection.)
- CVE-2023-0614 (The fix in 4.6.16, 4.7.9, 4.8.4 and 4.9.7 for CVE-2018-10919 Confidential attribute disclosure via LDAP filters was insufficient and an attacker may be able to obtain confidential BitLocker recovery keys from a Samba AD DC. Installations with such secrets in their Samba AD should assume they have been obtained and need replacing.)
Release Notes Samba 4.18.1
Samba 4.18.0
(Updated 1-March-2023)
- Wednesday, March 8 2023 - Samba 4.18.0 has been released.
Release Notes Samba 4.18.0
Samba 4.18.0rc4
(Updated 1-March-2023)
- Wednesday, March 1 2023 - Samba 4.18.0rc4 has been released.
Release Notes Samba 4.18.0rc4
Samba 4.18.0rc3
(Updated 15-February-2023)
- Wednesday, February 15 2023 - Samba 4.18.0rc3 has been released.
Release Notes Samba 4.18.0rc3
Samba 4.18.0rc2
(Updated 1-February-2023)
- Wednesday, February 1 2023 - Samba 4.18.0rc2 has been released.
Release Notes Samba 4.18.0rc2
Samba 4.18.0rc1
(Updated 18-January-2023)
- Wednesday, January 18 2023 - Samba 4.18.0rc1 has been released.
Release Notes Samba 4.18.0rc1