1 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
2 "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
3 <html xmlns="http://www.w3.org/1999/xhtml">
5 <title>Samba 4.16.11 - Release Notes</title>
8 <H2>Samba 4.16.11 Available for Download</H2>
10 <a href="https://download.samba.org/pub/samba/stable/samba-4.16.11.tar.gz">Samba 4.16.11 (gzipped)</a><br>
11 <a href="https://download.samba.org/pub/samba/stable/samba-4.16.11.tar.asc">Signature</a>
14 <a href="https://download.samba.org/pub/samba/patches/samba-4.16.10-4.16.11.diffs.gz">Patch (gzipped) against Samba 4.16.10</a><br>
15 <a href="https://download.samba.org/pub/samba/patches/samba-4.16.10-4.16.11.diffs.asc">Signature</a>
19 ===============================
20 Release Notes for Samba 4.16.11
22 ===============================
25 This is a security release in order to address the following defects:
27 o CVE-2022-2127: When winbind is used for NTLM authentication, a maliciously
28 crafted request can trigger an out-of-bounds read in winbind
29 and possibly crash it.
30 https://www.samba.org/samba/security/CVE-2022-2127.html
32 o CVE-2023-34966: An infinite loop bug in Samba's mdssvc RPC service for
33 Spotlight can be triggered by an unauthenticated attacker by
34 issuing a malformed RPC request.
35 https://www.samba.org/samba/security/CVE-2023-34966.html
37 o CVE-2023-34967: Missing type validation in Samba's mdssvc RPC service for
38 Spotlight can be used by an unauthenticated attacker to
39 trigger a process crash in a shared RPC mdssvc worker process.
40 https://www.samba.org/samba/security/CVE-2023-34967.html
42 o CVE-2023-34968: As part of the Spotlight protocol Samba discloses the server-
43 side absolute path of shares and files and directories in
45 https://www.samba.org/samba/security/CVE-2023-34968.html
51 o Ralph Boehme <slow@samba.org>
52 * BUG 15072: CVE-2022-2127.
53 * BUG 15340: CVE-2023-34966.
54 * BUG 15341: CVE-2023-34967.
55 * BUG 15388: CVE-2023-34968.
57 o Samuel Cabrero <scabrero@samba.org>
58 * BUG 15072: CVE-2022-2127.
60 o Volker Lendecke <vl@samba.org>
61 * BUG 15072: CVE-2022-2127.
63 o Stefan Metzmacher <metze@samba.org>
64 * BUG 15418: Secure channel faulty since Windows 10/11 update 07/2023.