Number: AV16-060
Date: 12 April 2016
Purpose
The purpose of this advisory is to bring attention to vulnerabilities in Samba (smbd).
Assessment
CCIRC is aware of vulnerabilities in Samba (smbd) which could allow a malicious actor to perform man-in-the-middle and denial-of-service attacks. Security fixes for these vulnerabilities have been made available for Samba versions 4.2, 4.3 and 4.4. Earlier versions of Samba have been discontinued and will not receive security fixes.
Affected versions: 4.4.0, 4.3.0-4.3.6, 4.2.0-4.2.9, 4.1.x, 4.0.x, 3.6.x
CVE References: CVE-2015-5370, CVE-2016-2110, CVE-2016-2111, CVE-2016-2112, CVE-2016-2113, CVE-2016-2114, CVE-2016-2115, CVE-2016-2118
Suggested Action
CCIRC recommends that system administrators identify their affected assets and potential interdependencies with their organization’s critical services, and follow their patch management process accordingly or consider applying the work-arounds.
References:
- Badlock Vulnerability: http://www.badlock.org
- Samba Security Releases: http://samba.org/samba/history/security.html