Good morning, i recently came across this page and wanted to share as fyi and see if there is any need for concern for AD implementation with Nethserver? If i read it correctly RPC is not an issue with current version of Samba as it is affected in 4.9 and 4.10 but the ldap side is where i am curious as the patch they provide i am not sure if we can use.
Well… following your link, CVE-2019-12436 if patched should be enough to not being vulnerable to CVE-2019-12435.
According to RedHat… https://access.redhat.com/security/cve/cve-2019-12436
No version of RHEL are vulnerable, without any guarantee…
Latest Samba4 release available is 4.10.6
I do not use NSDC feature in my setups, would you please @corum post the result of smbstatus --version please?
With an updated installation, of course.
It’s fully updated? Quite strange that Samba is “that old”…
Subscription usually delays the updates until they are verified, avoiding issues and incompatibilities or “upgrade problems” related.