SAMBA+ 4.14.4, 4.13.8 and 4.12.15 have just been released by SerNet. The Samba software packages for various SUSE and Red Hat platforms as well as for Debian GNU/Linux, Ubuntu and AIX. are available now. Please note, that these are important security releases. Affected systems should be updated as soon as possible.
The packages address the following issue:
- CVE-2021-20254: Negative idmap cache entries can cause incorrect group entries in the Samba file server process token
For details, please see the release notes for Samba 4.14.4, Samba 4.13.8 and/or Samba 4.12.15.
SAMBA+ packages are available as software subscription. They can be purchased at the SAMBA+ shop, detailed information and prices are listed at https://shop.samba.plus. The subscriptions are managed at our platform OPOSSO (https://oposso.samba.plus). Users can activate their subscriptions here and manage access credentials. The new SAMBA+ packages are included in existing subscriptions.