Samba 4.12.2, 4.11.8 and 4.10.15 Security Releases Available
These are security releases in order to address CVE-2020-10700 (Use-after-free in Samba AD DC LDAP Server with ASQ). CVE-2020-10704 (LDAP Denial of Service (stack overflow) in Samba AD DC).
The uncompressed tarballs have been signed using GnuPG (ID 6F33915B6568B7EA). The 4.12.2 source code can be downloaded now. A patch against Samba 4.12.1 is also available. See the 4.12.2 release notes for more info. The 4.11.8 source code can be downloaded now. A patch against Samba 4.11.7 is also available. See the 4.11.8 release notes for more info. The 4.10.15 source code can be downloaded now. A patch against Samba 4.10.14 is also available. See the 4.10.15 release notes for more info.