Tuesday 04 May 2021
The impact of this issue announcement is medium. Please act accordingly to rectify the issue, as stated below.
All versions of the Samba file server since Samba 3.6.0
What you need to know:
Samba’s Security Team has released security updates to address a coding error in windows group identities (SIDs) to unix group ids (gids) conversion, which could process unexpected group entries, leading to unauthorised access to files (CVE-2021-20254).