These are security releases in order to address the following defects:
o CVE-2019-10218: Client code can return filenames containing path separators.
o CVE-2019-14833: Samba AD DC check password script does not receive the full
o CVE-2019-14847: User with "get changes" permission can crash AD DC LDAP server
Malicious servers can cause Samba client code to return filenames containing
path separators to calling code.
When the password contains multi-byte (non-ASCII) characters, the check
password script does not receive the full password string.
Users with the "get changes" extended access right can crash the AD DC LDAP
server by requesting an attribute using the range= syntax.
For more details and workarounds, please refer to the security advisories.