GLSA Advocate
Joined: 12 May 2004 Posts: 2663
|
Posted: Tue May 22, 2018 11:26 pm Post subject: [ GLSA 201805-07 ] Samba |
|
|
Gentoo Linux Security Advisory
Title: Samba: Multiple vulnerabilities (GLSA 201805-07)
Severity: normal
Exploitable: remote
Date: 2018-05-22
Bug(s): #588262, #619516, #639024, #650382
ID: 201805-07
Synopsis
Multiple vulnerabilities have been found in Samba, the worst of
which may allow remote execution of arbitrary code.
Background
Samba is a suite of SMB and CIFS client/server programs.
Affected Packages
Package: net-fs/samba
Vulnerable: < 4.5.16
Unaffected: >= 4.5.16
Architectures: All supported architectures
Description
Multiple vulnerabilities have been discovered in Samba. Please review
the CVE identifiers referenced below for details.
Impact
A remote attacker could possibly execute arbitrary code, cause a Denial
of Service condition, conduct a man-in-the-middle attack, or obtain
sensitive information.
Workaround
There is no known workaround at this time.
Resolution
All Samba users should upgrade to the latest version: Code: | # emerge --sync
# emerge --ask --oneshot --verbose ">=net-fs/samba-4.5.16"
|
References
CVE-2016-2119
CVE-2017-14746
CVE-2017-15275
CVE-2017-7494
CVE-2018-1050
CVE-2018-1057 |
|