vulnerability
SUSE: CVE-2016-2114: SUSE Linux Security Advisory
Severity | CVSS | Published | Added | Modified |
---|---|---|---|---|
4 | (AV:N/AC:M/Au:N/C:N/I:P/A:N) | Apr 20, 2016 | Apr 20, 2016 | Jan 26, 2018 |
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:N/I:P/A:N)
Published
Apr 20, 2016
Added
Apr 20, 2016
Modified
Jan 26, 2018
Description
The SMB1 protocol implementation in Samba 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not recognize the "server signing = mandatory" setting, which allows man-in-the-middle attackers to spoof SMB servers by modifying the client-server data stream.
Solution(s)
suse-upgrade-ctdbsuse-upgrade-ctdb-debuginfosuse-upgrade-ctdb-develsuse-upgrade-ctdb-pcp-pmdasuse-upgrade-ctdb-pcp-pmda-debuginfosuse-upgrade-ctdb-testssuse-upgrade-ctdb-tests-debuginfosuse-upgrade-libdcerpc-atsvc-develsuse-upgrade-libdcerpc-atsvc0suse-upgrade-libdcerpc-atsvc0-32bitsuse-upgrade-libdcerpc-atsvc0-debuginfosuse-upgrade-libdcerpc-atsvc0-debuginfo-32bitsuse-upgrade-libdcerpc-binding0suse-upgrade-libdcerpc-binding0-32bitsuse-upgrade-libdcerpc-binding0-debuginfosuse-upgrade-libdcerpc-binding0-debuginfo-32bitsuse-upgrade-libdcerpc-develsuse-upgrade-libdcerpc-samr-develsuse-upgrade-libdcerpc-samr0suse-upgrade-libdcerpc-samr0-32bitsuse-upgrade-libdcerpc-samr0-debuginfosuse-upgrade-libdcerpc-samr0-debuginfo-32bitsuse-upgrade-libdcerpc0suse-upgrade-libdcerpc0-32bitsuse-upgrade-libdcerpc0-debuginfosuse-upgrade-libdcerpc0-debuginfo-32bitsuse-upgrade-libgensec-develsuse-upgrade-libgensec0suse-upgrade-libgensec0-32bitsuse-upgrade-libgensec0-debuginfosuse-upgrade-libgensec0-debuginfo-32bitsuse-upgrade-libndr-develsuse-upgrade-libndr-krb5pac-develsuse-upgrade-libndr-krb5pac0suse-upgrade-libndr-krb5pac0-32bitsuse-upgrade-libndr-krb5pac0-debuginfosuse-upgrade-libndr-krb5pac0-debuginfo-32bitsuse-upgrade-libndr-nbt-develsuse-upgrade-libndr-nbt0suse-upgrade-libndr-nbt0-32bitsuse-upgrade-libndr-nbt0-debuginfosuse-upgrade-libndr-nbt0-debuginfo-32bitsuse-upgrade-libndr-standard-develsuse-upgrade-libndr-standard0suse-upgrade-libndr-standard0-32bitsuse-upgrade-libndr-standard0-debuginfosuse-upgrade-libndr-standard0-debuginfo-32bitsuse-upgrade-libndr0suse-upgrade-libndr0-32bitsuse-upgrade-libndr0-debuginfosuse-upgrade-libndr0-debuginfo-32bitsuse-upgrade-libnetapi-develsuse-upgrade-libnetapi0suse-upgrade-libnetapi0-32bitsuse-upgrade-libnetapi0-debuginfosuse-upgrade-libnetapi0-debuginfo-32bitsuse-upgrade-libregistry-develsuse-upgrade-libregistry0suse-upgrade-libregistry0-32bitsuse-upgrade-libregistry0-debuginfosuse-upgrade-libregistry0-debuginfo-32bitsuse-upgrade-libsamba-credentials-develsuse-upgrade-libsamba-credentials0suse-upgrade-libsamba-credentials0-32bitsuse-upgrade-libsamba-credentials0-debuginfosuse-upgrade-libsamba-credentials0-debuginfo-32bitsuse-upgrade-libsamba-hostconfig-develsuse-upgrade-libsamba-hostconfig0suse-upgrade-libsamba-hostconfig0-32bitsuse-upgrade-libsamba-hostconfig0-debuginfosuse-upgrade-libsamba-hostconfig0-debuginfo-32bitsuse-upgrade-libsamba-passdb-develsuse-upgrade-libsamba-passdb0suse-upgrade-libsamba-passdb0-32bitsuse-upgrade-libsamba-passdb0-debuginfosuse-upgrade-libsamba-passdb0-debuginfo-32bitsuse-upgrade-libsamba-policy-develsuse-upgrade-libsamba-policy0suse-upgrade-libsamba-policy0-32bitsuse-upgrade-libsamba-policy0-debuginfosuse-upgrade-libsamba-policy0-debuginfo-32bitsuse-upgrade-libsamba-util-develsuse-upgrade-libsamba-util0suse-upgrade-libsamba-util0-32bitsuse-upgrade-libsamba-util0-debuginfosuse-upgrade-libsamba-util0-debuginfo-32bitsuse-upgrade-libsamdb-develsuse-upgrade-libsamdb0suse-upgrade-libsamdb0-32bitsuse-upgrade-libsamdb0-debuginfosuse-upgrade-libsamdb0-debuginfo-32bitsuse-upgrade-libsmbclient-develsuse-upgrade-libsmbclient-raw-develsuse-upgrade-libsmbclient-raw0suse-upgrade-libsmbclient-raw0-32bitsuse-upgrade-libsmbclient-raw0-debuginfosuse-upgrade-libsmbclient-raw0-debuginfo-32bitsuse-upgrade-libsmbclient0suse-upgrade-libsmbclient0-32bitsuse-upgrade-libsmbclient0-debuginfosuse-upgrade-libsmbclient0-debuginfo-32bitsuse-upgrade-libsmbconf-develsuse-upgrade-libsmbconf0suse-upgrade-libsmbconf0-32bitsuse-upgrade-libsmbconf0-debuginfosuse-upgrade-libsmbconf0-debuginfo-32bitsuse-upgrade-libsmbldap-develsuse-upgrade-libsmbldap0suse-upgrade-libsmbldap0-32bitsuse-upgrade-libsmbldap0-debuginfosuse-upgrade-libsmbldap0-debuginfo-32bitsuse-upgrade-libtevent-util-develsuse-upgrade-libtevent-util0suse-upgrade-libtevent-util0-32bitsuse-upgrade-libtevent-util0-debuginfosuse-upgrade-libtevent-util0-debuginfo-32bitsuse-upgrade-libwbclient-develsuse-upgrade-libwbclient0suse-upgrade-libwbclient0-32bitsuse-upgrade-libwbclient0-debuginfosuse-upgrade-libwbclient0-debuginfo-32bitsuse-upgrade-sambasuse-upgrade-samba-32bitsuse-upgrade-samba-clientsuse-upgrade-samba-client-32bitsuse-upgrade-samba-client-debuginfosuse-upgrade-samba-client-debuginfo-32bitsuse-upgrade-samba-core-develsuse-upgrade-samba-debuginfosuse-upgrade-samba-debuginfo-32bitsuse-upgrade-samba-debugsourcesuse-upgrade-samba-docsuse-upgrade-samba-libssuse-upgrade-samba-libs-32bitsuse-upgrade-samba-libs-debuginfosuse-upgrade-samba-libs-debuginfo-32bitsuse-upgrade-samba-pidlsuse-upgrade-samba-pythonsuse-upgrade-samba-python-debuginfosuse-upgrade-samba-testsuse-upgrade-samba-test-debuginfosuse-upgrade-samba-test-develsuse-upgrade-samba-winbindsuse-upgrade-samba-winbind-32bitsuse-upgrade-samba-winbind-debuginfosuse-upgrade-samba-winbind-debuginfo-32bit

NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.