posted_news/20210324-085952.4.14.1.body.html

   1 <!-- BEGIN: posted_news/20210324-085952.4.14.1.body.html -->
   2 <h5><a name="4.14.1">24 March 2021</a></h5>
   3 <p class=headline>Samba 4.14.2 (4.14.1), 4.13.7 (4.13.6) and 4.12.14 (4.12.13)
   4 Security Releases</p>
   5 <p>
   6 These are security releases in order to address <a
   7 href="/samba/security/CVE-2020-27840.html">CVE-2020-27840</a>
   8 (Heap corruption via crafted DN strings) and <a
   9 href="/samba/security/CVE-2021-20277.html">CVE-2021-20277</a> (Out of bounds
  10 read in AD DC LDAP server).
  11 </p>
  12
  13 <p>
  14 Please ignore the 4.14.1, 4.13.6 and 4.12.13 releases
  15 and only use 4.14.2, 4.13.7 and 4.12.14.
  16 </p>
  17
  18 <p>
  19 If you are building/using ldb from a system library, you'll
  20 also need the related updated ldb tarball, otherwise you can ignore it.
  21 </p>
  22
  23 <p>
  24 The uncompressed Samba tarballs have been signed using GnuPG (ID AA99442FB680B620).
  25 </p>
  26 <p>
  27 The uncompressed ldb tarballs have been signed using GnuPG (ID 4793916113084025).
  28 </p>
  29
  30 <p>
  31 The Samba 4.14.2 source code can be
  32 <a
  33 href="https://download.samba.org/pub/samba/stable/samba-4.14.2.tar.gz">downloaded
  34 here</a>.</br>
  35 Incremental patches for Samba are also available:
  36 <a
  37 href="https://download.samba.org/pub/samba/patches/samba-4.14.0-4.14.1.diffs.gz">patch
  38 from Samba 4.14.0 to 4.14.1</a> and
  39 <a
  40 href="https://download.samba.org/pub/samba/patches/samba-4.14.1-4.14.2.diffs.gz">patch
  41 from Samba 4.14.1 to 4.14.2</a></br>
  42 See <a href="https://www.samba.org/samba/history/samba-4.14.2.html">the 4.14.2
  43 release notes for more info</a>.</br>
  44 The ldb 2.3.0 release for use with Samba 4.14.2 can be
  45 <a href="https://download.samba.org/pub/ldb/ldb-2.3.0.tar.gz">downloaded here</a>.
  46 </p>
  47
  48 <p>
  49 The Samba 4.13.7 source code can be
  50 <a
  51 href="https://download.samba.org/pub/samba/stable/samba-4.13.7.tar.gz">downloaded
  52 here</a>.</br>
  53 Incremental patches for Samba are also available:
  54 <a
  55 href="https://download.samba.org/pub/samba/patches/samba-4.13.5-4.13.6.diffs.gz">patch
  56 from Samba 4.13.5 to 4.13.6</a> and
  57 <a
  58 href="https://download.samba.org/pub/samba/patches/samba-4.13.6-4.13.7.diffs.gz">patch
  59 from Samba 4.13.6 to 4.13.7</a></br>
  60 See <a href="https://www.samba.org/samba/history/samba-4.13.7.html">the 4.13.7
  61 release notes for more info</a>.</br>
  62 The ldb 2.2.1 release for use with Samba 4.13.7 can be
  63 <a href="https://download.samba.org/pub/ldb/ldb-2.2.1.tar.gz">downloaded here</a>.
  64 </p>
  65
  66 <p>
  67 The Samba 4.12.14 source code can be
  68 <a
  69 href="https://download.samba.org/pub/samba/stable/samba-4.12.14.tar.gz">downloaded
  70 here</a>.</br>
  71 Incremental patches for Samba are also available:
  72 <a
  73 href="https://download.samba.org/pub/samba/patches/samba-4.12.12-4.12.13.diffs.gz">patch
  74 from Samba 4.12.12 to 4.12.13</a> and
  75 <a
  76 href="https://download.samba.org/pub/samba/patches/samba-4.12.13-4.12.14.diffs.gz">patch
  77 from Samba 4.12.13 to 4.12.14</a></br>
  78 See <a href="https://www.samba.org/samba/history/samba-4.12.14.html">the 4.12.14
  79 release notes for more info</a>.</br>
  80 The ldb 2.1.5 release for use with Samba 4.12.14 can be
  81 <a href="https://download.samba.org/pub/ldb/ldb-2.1.5.tar.gz">downloaded here</a>.
  82 </p>
  83 <!-- END: posted_news/20210324-085952.4.14.1.body.html -->