SerNet-GnuTLS 3.6.14 has just been released. SAMBA+ 4.12.3 packages on various SUSE and Red Hat platforms depend on a recent version of GnuTLS, which is provided by the sernet-gnutls packages.
The sernet-gnutls package is part of the SAMBA+ repositories for the following distributions:
- RHEL6 - Red Hat Enterprise Linux 6
- CentOS 6
- Oracle Linux 6
- RHEL7 - Red Hat Enterprise Linux 7
- CentOS 7
- Oracle Linux 7
- SLES11 - SUSE Linux Enterprise Server 11
- SLES12 - SUSE Linux Enterprise Server 12
- openSUSE Leap 42
The new sernet-gnutls packages address the GnuTLS security issue CVE-2020-13777:
and include an additional patch to solve a memory (RAM) consuming bug:
- Bug 14399 - Server RAM filling up when writing to share from macOS
https://bugzilla.samba.org/show_bug.cgi?id=14399
The new SAMBA+ 4.12.3 for AIX 7 does also include the recently patched GnuTLS version.
SAMBA+ packages are available as software subscription. They can be purchased at the SAMBA+ shop, detailed information and prices are listed at https://shop.samba.plus. The subscriptions are managed at our platform OPOSSO (https://oposso.samba.plus). Users can activate their subscriptions here and manage access credentials. The new SAMBA+ packages are included in existing subscriptions.
