This is a security release to address CVE-2009-1886 and CVE-2009-1888. The original advisory for CVE-2009-1886 and original advisory for CVE-2009-1888 are available online. Patches for CVE-2009-1886 and CVE-2009-1888 are available for Samba 3.2.12. This security advisory is applicable from Samba 3.2.0 to 3.2.12. Past security advisories are available on our security page.

The uncompressed tarballs and patch files have been signed using GnuPG (ID 6568B7EA). The source code can be downloaded now. See the release notes for more info.