1 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
2 "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
3 <html xmlns="http://www.w3.org/1999/xhtml">
5 <title>Samba 4.14.11 - Release Notes</title>
8 <H2>Samba 4.14.11 Available for Download</H2>
10 <a href="https://download.samba.org/pub/samba/stable/samba-4.14.11.tar.gz">Samba 4.14.11 (gzipped)</a><br>
11 <a href="https://download.samba.org/pub/samba/stable/samba-4.14.11.tar.asc">Signature</a>
14 <a href="https://download.samba.org/pub/samba/patches/samba-4.14.10-4.14.11.diffs.gz">Patch (gzipped) against Samba 4.14.10</a><br>
15 <a href="https://download.samba.org/pub/samba/patches/samba-4.14.10-4.14.11.diffs.asc">Signature</a>
19 ===============================
20 Release Notes for Samba 4.14.11
22 ===============================
25 This is the latest stable release of the Samba 4.14 release series.
30 There have been a few regressions in the security release 4.14.10:
32 o CVE-2020-25717: A user on the domain can become root on domain members.
33 https://www.samba.org/samba/security/CVE-2020-25717.html
35 The instructions have been updated and some workarounds
36 initially adviced for 4.14.10 are no longer required and
37 should be reverted in most cases.
39 o BUG-14902: User with multiple spaces (eg Fred<space><space>Nurk) become
40 un-deletable. While this release should fix this bug, it is
41 adviced to have a look at the bug report for more detailed
42 information, see https://bugzilla.samba.org/show_bug.cgi?id=14902.
47 o Jeremy Allison <jra@samba.org>
48 * BUG 14878: Recursive directory delete with veto files is broken.
49 * BUG 14879: A directory containing dangling symlinks cannot be deleted by
50 SMB2 alone when they are the only entry in the directory.
52 o Andrew Bartlett <abartlet@samba.org>
53 * BUG 14656: Spaces incorrectly collapsed in ldb attributes.
54 * BUG 14694: Ensure that the LDB request has not timed out during filter
55 processing as the LDAP server MaxQueryDuration is otherwise not honoured.
56 * BUG 14901: The CVE-2020-25717 username map [script] advice has undesired
57 side effects for the local nt token.
58 * BUG 14902: User with multiple spaces (eg Fred<space><space>Nurk) become un-
61 o Ralph Boehme <slow@samba.org>
62 * BUG 14127: Avoid storing NTTIME_THAW (-2) as value on disk
63 * BUG 14922: Kerberos authentication on standalone server in MIT realm
65 * BUG 14923: Segmentation fault when joining the domain.
67 o Alexander Bokovoy <ab@samba.org>
68 * BUG 14903: Support for ROLE_IPA_DC is incomplete.
70 o Stefan Metzmacher <metze@samba.org>
71 * BUG 14788: Memory leak if ioctl(FSCTL_VALIDATE_NEGOTIATE_INFO) fails before
73 * BUG 14899: winbindd doesn't start when "allow trusted domains" is off.
74 * BUG 14901: The CVE-2020-25717 username map [script] advice has undesired
75 side effects for the local nt token.
77 o Joseph Sutton <josephsutton@catalyst.net.nz>
78 * BUG 14694: Ensure that the LDB request has not timed out during filter
79 processing as the LDAP server MaxQueryDuration is otherwise not honoured.
80 * BUG 14901: The CVE-2020-25717 username map [script] advice has undesired
81 side effects for the local nt token.