Fwd: Heads-up: Upcoming Samba security releases

[Douglas Bagnall <douglas.bagnall () catalyst net nz>]

The Samba team (which includes me) has announced there will be a 
security release next Wednesday. This is our standard procedure, though 
this time we have added an estimate of how many people might be affected 
by each bug.

Douglas

-------- Forwarded Message --------
Subject: Heads-up: Upcoming Samba security releases
Date: Thu, 9 Oct 2025 17:38:13 +1300
From: Douglas Bagnall via samba-technical <samba-technical () lists samba org>
Reply-To: Douglas Bagnall <dbagnall () samba org>
To: samba-technical <samba-technical () lists samba org>, samba 
<samba () lists samba org>

This is a heads-up that there will be Samba security updates for 4.21, 
4.22, and 4.23 on Wednesday, October 15, 2025. Please make sure that 
your Samba servers will be updated soon after the release!

Impacted component:
 - AD DC (CVSS 10, High, when using a very unusual configuration)
 - File services (CVSS 4.3, Low, in a widely used configuration)

The AD DC bug will affect very few, possibly zero, users.

cheers,
Douglas Bagnall
Samba Team and Catalyst IT