42 matches found
MiracleLinux 4 : samba4-4.2.10-7.AXS4 (AXSA:2016-577:04)
The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2016-577:04 advisory. Samba is the standard Windows interoperability suite of programs for Linux and Unix. Security issues fixed with this release: CVE-2016-2119...
K13364192: Samba vulnerability CVE-2016-2119
Security Advisory Description libcli/smb/smbXclibase.c in Samba 4.x before 4.2.14, 4.3.x before 4.3.11, and 4.4.x before 4.4.5 allows man-in-the-middle attackers to bypass a client-signing protection mechanism, and consequently spoof SMB2 and SMB3 servers, via the 1 SMB2SESSIONFLAGISGUEST or 2...
SUSE: Security Advisory (SUSE-SU-2016:2570-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for samba (EulerOS-SA-2016-1031)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security Bulletin: Vulnerability in Samba affects IBM Spectrum Scale SMB protocol access method (CVE-2016-2119)
Summary A Samba vulnerability which could allow a remote attacker to conduct spoofing attacks affects IBM Spectrum Scale SMB protocol access method. Vulnerability Details CVEID: CVE-2016-2119 DESCRIPTION: Samba could allow a remote attacker to conduct spoofing attacks. A man-in-the-middle attacke...
Security Bulletin: Samba vulnerability issue in IBM SONAS (CVE-2016-2119)
Summary IBM SONAS is shipped with Samba, for which a fix is available for security vulnerabilities. Vulnerability Details Samba is used in IBM SONAS to enable file management and authentication services for Microsoft Windows environments. CVEID: CVE-2016-2119 DESCRIPTION: Samba could allow a remo...
Security Bulletin:Samba vulnerability issue on IBM Storwize V7000 Unified (CVE-2016-2119)
Summary IBM Storwize V7000 Unified is shipped with Samba, for which a fix is available for security vulnerabilities. Vulnerability Details Samba is used in IBM Storwize V7000 Unified to enable file management and authentication services for Microsoft Windows environments. CVEID: CVE-2016-2119...
Security Bulletin: IBM® DB2® LUW on AIX and Linux Affected by a Vulnerability in GPFS (CVE-2016-2119)
Summary DB2 LUW is affected by a vulnerability in IBM® Spectrum Scale Version 4.1.1 that is used by DB2® pureScale™ Feature on AIX and Linux. IBM Spectrum Scale is previously known as General Parallel File System GPFS, Vulnerability Details CVEID: CVE-2016-2119 DESCRIPTION: Samba could allow a...
Debian DSA-3740-1 : samba - security update
Several vulnerabilities have been discovered in Samba, a SMB/CIFS file, print, and login server for Unix. The Common Vulnerabilities and Exposures project identifies the following issues : - CVE-2016-2119 Stefan Metzmacher discovered that client-side SMB2/3 required signing can be downgraded,...
[SECURITY] [DSA 3740-1] samba security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3740-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso December 19, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3740-1] samba security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3740-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso December 19, 2016 https://www.debian.org/security/faq -...
Debian Security Advisory DSA 3740-1 (samba - security update)
Several vulnerabilities have been discovered in Samba, a SMB/CIFS file, print, and login server for Unix. The Common Vulnerabilities and Exposures project identifies the following issues: CVE-2016-2119 Stefan Metzmacher discovered that client-side SMB2/3 required signing can be downgraded, allowi...
DSA-3740-1 samba - security update
Bulletin has no description...
Debian: Security Advisory (DSA-3740-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Amazon Linux: Security Advisory (ALAS-2016-732)
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES12 Security Update : samba (SUSE-SU-2016:2570-1)
This update for samba provides the following fix: Following security issue was fixed : - CVE-2016-2119: Prevent client-side SMB2 signing downgrade. bsc986869 Also the following bugs were fixed : - Fix possible ctdb crash when opening sockets with htonsIPPROTORAW. bsc969522 - Honor smb.conf socket...
openSUSE Security Update : samba (openSUSE-2016-1111)
This update for samba provides the following fixes : - CVE-2016-2119: Prevent client-side SMB2 signing downgrade. bsc986869 - Fix possible ctdb crash when opening sockets with htonsIPPROTORAW. bsc969522 - Honor smb.conf socket options in winbind. bsc975131 - Fix ntlm-auth segmentation fault with...
SUSE SLED12 / SLES12 Security Update : samba (SUSE-SU-2016:2306-1)
This update for samba provides the following fixes : - CVE-2016-2119: Prevent client-side SMB2 signing downgrade. bsc986869 - Fix possible ctdb crash when opening sockets with htonsIPPROTORAW. bsc969522 - Honor smb.conf socket options in winbind. bsc975131 - Fix ntlm-auth segmentation fault with...
Medium: samba
Issue Overview: A flaw was found in the way Samba initiated signed DCE/RPC connections. A man-in-the-middle attacker could use this flaw to downgrade the connection to not use signing and therefore impersonate the server. Affected Packages: samba Issue Correction: Run yum update samba or yum upda...
RedHat Update for samba RHSA-2016:1486-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...