2 matches found
RC4/HMAC-MD5 NetLogon Secure Channel is weak and should be avoided
Description This is Samba's response to Microsoft's CVE-2022-3802312. Following RFC8429 and as has been published for CVE-2022-3938, rc4-hmac also known as arcfour-hmac-md5 cryptography in Kerberos is weak, then it follows that the RC4 mode in the NETLOGON Secure Channel DCE/RPC bulk encryption i...
Security fix for the ALT Linux 10 package samba version 4.16.8-alt1
Dec. 15, 2022 Evgeny Sinelnikov 4.16.8-alt1 - Update to maintenance release of Samba 4.16 with fixes of the Samba CVE for the Windows Kerberos Elevation of Privilege Vulnerability disclosed by Microsoft on Nov 8 2022 CVE-2022-37967, CVE-2022-37966. - Security fixes: + CVE-2022-37966: A Samba Acti...