Blog

SAMBA+ 4.9.7 packages have just been released by SerNet. The packages are available for various SUSE and Red Hat platforms as well as for Debian GNU/Linux and Ubuntu.

For details, please see the release notes.

SAMBA+ packages and all later versions are available as software subscription. They can be purchased at the SAMBA+ shop, detailed information and prices are listed at https://shop.samba.plus. The subscriptions are managed at our platform OPOSSO (https://oposso.samba.plus). Users can activate their subscriptions here and manage access credentials. The new SAMBA+ packages are included in existing subscriptions.


SAMBA+ 4.10.5 and 4.9.9 packages have just been released by SerNet. The packages are available for various SUSE and Red Hat platforms as well as for Debian GNU/Linux and Ubuntu.

These are Security Releases, please update your servers as soon as possible.

For details, please see the release notes 4.10.5, release notes 4.9.9.

SAMBA+ packages and all later versions are available as software subscription. They can be purchased at the SAMBA+ shop, detailed information and prices are listed at https://shop.samba.plus. The subscriptions are managed at our platform OPOSSO (https://oposso.samba.plus). Users can activate their subscriptions here and manage access credentials. The new SAMBA+ packages are included in existing subscriptions.


SAMBA+ 4.10.2, 4.9.6 and 4.8.11 packages have just been released by SerNet. These are important security releases, please update affected systems as soon as possible. The packages are available for various SUSE and Red Hat platforms as well as for Debian GNU/Linux and Ubuntu.

The packages address the following issues:

  • CVE-2019-3870 World writable files in Samba AD DC private/ dir
    During the provision of a new Active Directory DC, some files in the private/ directory are created world-writable. SAMBA+ creates the private/ directory with limited permissions. By default the files can only be accessed by privileged users.
  • CVE-2019-3880 Save registry file outside share as unprivileged user
    Authenticated users with write permission can trigger a symlink traversal to write or detect files outside the Samba share.

Samba 4.10.2 and 4.9.6 address all CVEs listed above. Samba 4.8.11 addresses CVE-2019-3880, only.

SAMBA+ packages and all later versions are available as software subscription. They can be purchased at the SAMBA+ shop, detailed information and prices are listed at https://shop.samba.plus. The subscriptions are managed at our platform OPOSSO (https://oposso.samba.plus). Users can activate their subscriptions here and manage access credentials. The new SAMBA+ packages are included in existing subscriptions.


SAMBA+ 4.10.1 and 4.8.10 have just been released by SerNet. Packages for various SUSE and Red Hat platforms as well as for Debian GNU/Linux and Ubuntu are available now.

These packages address a lot of issues, which are listed in the Samba release history:

SAMBA+ packages and all later versions are available as software subscription. They can be purchased at the SAMBA+ shop, detailed information and prices are listed at https://shop.samba.plus. The subscriptions are managed at our platform OPOSSO (https://oposso.samba.plus). Users can activate their subscriptions here and manage access credentials. The new SAMBA+ packages are included in existing subscriptions.


The SAMBA+ software packages from SerNet are now also available for IBM's Unix operating system AIX. SAMBA+ AIX can be purchased as a subscription with a runtime of 1, 3 or 5 years in the SAMBA+ shop. The administration of the subscription as well as the download of SAMBA+ AIX is done via the open source system OPOSSO.

A decisive advantage of SerNet's AIX packages is the minimized dependency on third-party libraries or other external package sources. This is achieved by SAMBA+ AIX consisting of a tar ball with an installation script. This distinguishes SAMBA+ AIX from rpm-based packages on the market, which often have dependency problems and are not well tested.

By providing AIX packages, SerNet is responding to various customer requests. For AIX systems, the Samba software previously had to be compiled at great effort. In the past, SerNet's Samba team has often provided support and made individual adaptations. This is now obsolete due to the extensively tested and maintained SAMBA+ AIX software packages.

At SerNet, Björn Jacke, a long-time member of the international Samba team, worked primarily on the AIX packages. He has already gained a lot of experience in porting the Samba software for various Unix distributions or AIX customizations on customer request. Subscribers to the SAMBA+ AIX packages can now benefit from this know-how.


Newsletter

SerNet's Samba newsletter informs you about all important developments and events with its main focus on new packages.

+ subscribe to Newsletter

SAMBA+ Shop

Buy and manage software subscriptions. SAMBA+ subscriptions are available for one, two and three years at the SAMBA+ shop.

+ visit the shop

Deutsche SpracheEnglish language