Description

The SMB1 protocol implementation in Samba 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not recognize the "server signing = mandatory" setting, which allows man-in-the-middle attackers to spoof SMB servers by modifying the client-server data stream.

References

• BID-86011
• CVE-2016-2114
• DEBIAN-DSA-3548
• REDHAT-RHSA-2016:0612
• REDHAT-RHSA-2016:0614
• REDHAT-RHSA-2016:0618
• REDHAT-RHSA-2016:0620
• URL: https://support.oracle.com/epmos/faces/DocumentDisplay?id=1448883.1&displayIndex=1

Solution

Related Vulnerabilities

• Gentoo Linux: CVE-2016-2114: Samba: Multiple vulnerabilities
• RHSA-2016:0618: samba security, bug fix, and enhancement update
• Huawei EulerOS: CVE-2016-2114: samba security update
• Amazon Linux AMI: Security patch for samba (ALAS-2016-686) (multiple CVEs)
• Debian: CVE-2016-2114: samba -- security update
• Vulnerabilities deemed not relevant on Red Hat Enterprise Linux 5
• Samba CVE-2016-2114: "server signing = mandatory" not enforced
• CentOS: (CVE-2016-2114) CESA-2016:0612: ipa, libldb, libtalloc, libtdb, libtevent, openchange, samba, samba4
• Vulnerabilities deemed not relevant on Red Hat Enterprise Linux 4
• Ubuntu: (Multiple Advisories) (CVE-2016-2114): Samba regression
• SUSE: CVE-2016-2114: SUSE Linux Security Advisory
• RHSA-2016:0612: samba and samba4 security, bug fix, and enhancement update
• RHSA-2016:0620: samba4 security, bug fix, and enhancement update
• Alpine Linux: CVE-2016-2114: samba Multiple security issues
• FreeBSD: samba -- multiple vulnerabilities (Multiple CVEs)
• Vulnerabilities deemed not relevant on Red Hat Enterprise Linux 6
• Oracle Linux: (CVE-2016-2114) ELSA-2016-0612: samba and samba4 security, bug fix, and enhancement update