Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- samba (2:3.6.6-6+deb7u9) wheezy-security; urgency=high
- * Non-maintainer upload by the Security Team.
- * Update CVE patchset for regression fixes
- -- Salvatore Bonaccorso <[email protected]> Tue, 12 Apr 2016 18:34:07 +0200
- samba (2:3.6.6-6+deb7u8) wheezy-security; urgency=high
- * Security update
- + Fixes:
- - CVE-2015-5370 (Multiple errors in DCE-RPC code)
- - CVE-2016-2110 (Man in the middle attacks possible with NTLMSSP)
- - CVE-2016-2111 (NETLOGON Spoofing Vulnerability)
- - CVE-2016-2112 (LDAP client and server don't enforce integrity)
- - CVE-2016-2115 (SMB IPC traffic is not integrity protected)
- - CVE-2016-2118 (SAMR and LSA man in the middle attacks possible)
- + The Samba 3.6 patches have been backported by Andreas Schneider
- (Red Hat) and Ralph Böhme (SerNet). Thanks goes to Stefan Metzmacher
- for finding and fixing the CVEs in the first place. Thanks for the
- help with backporting to Günther Deschner (Red Hat) and Aurélien Aptel
- (SUSE).
- -- Andrew Bartlett <[email protected]> Fri, 08 Apr 2016 16:23:09 +1200
Advertisement
Add Comment
Please, Sign In to add comment
