A flaw was found in samba. An off-by-default feature to tombstone dynamically created DNS records once they have reached their expiry time contains a use-after-free flaw that allows read memory to be saved back into the database. The highest threat from this vulnerability is to system availability.
The code in question is not run in the default configuration, so the workaround is simply to not set
dns zone scavenging = yes