usn-3092-1
Vulnerability from osv_ubuntu
Published
2016-09-28 16:52
Modified
2026-04-22 07:36
Summary
samba vulnerability
Details

Stefan Metzmacher discovered that Samba incorrectly handled certain flags in SMB2/3 client connections. A remote attacker could use this issue to disable client signing and impersonate servers by performing a machine-in-the-middle attack.

Samba has been updated to 4.3.11 in Ubuntu 14.04 LTS and Ubuntu 16.04 LTS. In addition to the security fix, the updated packages contain bug fixes, new features, and possibly incompatible changes.


{
  "affected": [
    {
      "database_specific": {
        "cves_map": {
          "cves": [
            {
              "id": "CVE-2016-2119",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            }
          ],
          "ecosystem": "Ubuntu:14.04:LTS"
        }
      },
      "ecosystem_specific": {
        "availability": "No subscription required",
        "binaries": [
          {
            "binary_name": "libnss-winbind",
            "binary_version": "2:4.3.11+dfsg-0ubuntu0.14.04.1"
          },
          {
            "binary_name": "libpam-smbpass",
            "binary_version": "2:4.3.11+dfsg-0ubuntu0.14.04.1"
          },
          {
            "binary_name": "libpam-winbind",
            "binary_version": "2:4.3.11+dfsg-0ubuntu0.14.04.1"
          },
          {
            "binary_name": "libparse-pidl-perl",
            "binary_version": "2:4.3.11+dfsg-0ubuntu0.14.04.1"
          },
          {
            "binary_name": "libsmbclient",
            "binary_version": "2:4.3.11+dfsg-0ubuntu0.14.04.1"
          },
          {
            "binary_name": "libsmbsharemodes0",
            "binary_version": "2:4.3.11+dfsg-0ubuntu0.14.04.1"
          },
          {
            "binary_name": "libwbclient0",
            "binary_version": "2:4.3.11+dfsg-0ubuntu0.14.04.1"
          },
          {
            "binary_name": "python-samba",
            "binary_version": "2:4.3.11+dfsg-0ubuntu0.14.04.1"
          },
          {
            "binary_name": "registry-tools",
            "binary_version": "2:4.3.11+dfsg-0ubuntu0.14.04.1"
          },
          {
            "binary_name": "samba",
            "binary_version": "2:4.3.11+dfsg-0ubuntu0.14.04.1"
          },
          {
            "binary_name": "samba-common",
            "binary_version": "2:4.3.11+dfsg-0ubuntu0.14.04.1"
          },
          {
            "binary_name": "samba-common-bin",
            "binary_version": "2:4.3.11+dfsg-0ubuntu0.14.04.1"
          },
          {
            "binary_name": "samba-dsdb-modules",
            "binary_version": "2:4.3.11+dfsg-0ubuntu0.14.04.1"
          },
          {
            "binary_name": "samba-libs",
            "binary_version": "2:4.3.11+dfsg-0ubuntu0.14.04.1"
          },
          {
            "binary_name": "samba-testsuite",
            "binary_version": "2:4.3.11+dfsg-0ubuntu0.14.04.1"
          },
          {
            "binary_name": "samba-vfs-modules",
            "binary_version": "2:4.3.11+dfsg-0ubuntu0.14.04.1"
          },
          {
            "binary_name": "smbclient",
            "binary_version": "2:4.3.11+dfsg-0ubuntu0.14.04.1"
          },
          {
            "binary_name": "winbind",
            "binary_version": "2:4.3.11+dfsg-0ubuntu0.14.04.1"
          }
        ]
      },
      "package": {
        "ecosystem": "Ubuntu:14.04:LTS",
        "name": "samba",
        "purl": "pkg:deb/ubuntu/samba@2:4.3.11+dfsg-0ubuntu0.14.04.1?arch=source\u0026distro=trusty"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "2:4.3.11+dfsg-0ubuntu0.14.04.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "2:3.6.18-1ubuntu3",
        "2:4.0.10+dfsg-4ubuntu2",
        "2:4.0.13+dfsg-1ubuntu1",
        "2:4.1.3+dfsg-2ubuntu2",
        "2:4.1.3+dfsg-2ubuntu3",
        "2:4.1.3+dfsg-2ubuntu4",
        "2:4.1.3+dfsg-2ubuntu5",
        "2:4.1.6+dfsg-1ubuntu1",
        "2:4.1.6+dfsg-1ubuntu2",
        "2:4.1.6+dfsg-1ubuntu2.14.04.1",
        "2:4.1.6+dfsg-1ubuntu2.14.04.2",
        "2:4.1.6+dfsg-1ubuntu2.14.04.3",
        "2:4.1.6+dfsg-1ubuntu2.14.04.4",
        "2:4.1.6+dfsg-1ubuntu2.14.04.5",
        "2:4.1.6+dfsg-1ubuntu2.14.04.7",
        "2:4.1.6+dfsg-1ubuntu2.14.04.8",
        "2:4.1.6+dfsg-1ubuntu2.14.04.9",
        "2:4.1.6+dfsg-1ubuntu2.14.04.11",
        "2:4.1.6+dfsg-1ubuntu2.14.04.12",
        "2:4.1.6+dfsg-1ubuntu2.14.04.13",
        "2:4.3.8+dfsg-0ubuntu0.14.04.2",
        "2:4.3.9+dfsg-0ubuntu0.14.04.1",
        "2:4.3.9+dfsg-0ubuntu0.14.04.3"
      ]
    },
    {
      "database_specific": {
        "cves_map": {
          "cves": [
            {
              "id": "CVE-2016-2119",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            }
          ],
          "ecosystem": "Ubuntu:16.04:LTS"
        }
      },
      "ecosystem_specific": {
        "availability": "No subscription required",
        "binaries": [
          {
            "binary_name": "ctdb",
            "binary_version": "2:4.3.11+dfsg-0ubuntu0.16.04.1"
          },
          {
            "binary_name": "libnss-winbind",
            "binary_version": "2:4.3.11+dfsg-0ubuntu0.16.04.1"
          },
          {
            "binary_name": "libpam-winbind",
            "binary_version": "2:4.3.11+dfsg-0ubuntu0.16.04.1"
          },
          {
            "binary_name": "libparse-pidl-perl",
            "binary_version": "2:4.3.11+dfsg-0ubuntu0.16.04.1"
          },
          {
            "binary_name": "libsmbclient",
            "binary_version": "2:4.3.11+dfsg-0ubuntu0.16.04.1"
          },
          {
            "binary_name": "libwbclient0",
            "binary_version": "2:4.3.11+dfsg-0ubuntu0.16.04.1"
          },
          {
            "binary_name": "python-samba",
            "binary_version": "2:4.3.11+dfsg-0ubuntu0.16.04.1"
          },
          {
            "binary_name": "registry-tools",
            "binary_version": "2:4.3.11+dfsg-0ubuntu0.16.04.1"
          },
          {
            "binary_name": "samba",
            "binary_version": "2:4.3.11+dfsg-0ubuntu0.16.04.1"
          },
          {
            "binary_name": "samba-common",
            "binary_version": "2:4.3.11+dfsg-0ubuntu0.16.04.1"
          },
          {
            "binary_name": "samba-common-bin",
            "binary_version": "2:4.3.11+dfsg-0ubuntu0.16.04.1"
          },
          {
            "binary_name": "samba-dsdb-modules",
            "binary_version": "2:4.3.11+dfsg-0ubuntu0.16.04.1"
          },
          {
            "binary_name": "samba-libs",
            "binary_version": "2:4.3.11+dfsg-0ubuntu0.16.04.1"
          },
          {
            "binary_name": "samba-testsuite",
            "binary_version": "2:4.3.11+dfsg-0ubuntu0.16.04.1"
          },
          {
            "binary_name": "samba-vfs-modules",
            "binary_version": "2:4.3.11+dfsg-0ubuntu0.16.04.1"
          },
          {
            "binary_name": "smbclient",
            "binary_version": "2:4.3.11+dfsg-0ubuntu0.16.04.1"
          },
          {
            "binary_name": "winbind",
            "binary_version": "2:4.3.11+dfsg-0ubuntu0.16.04.1"
          }
        ]
      },
      "package": {
        "ecosystem": "Ubuntu:16.04:LTS",
        "name": "samba",
        "purl": "pkg:deb/ubuntu/samba@2:4.3.11+dfsg-0ubuntu0.16.04.1?arch=source\u0026distro=xenial"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "2:4.3.11+dfsg-0ubuntu0.16.04.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "2:4.1.17+dfsg-4ubuntu2",
        "2:4.1.20+dfsg-1ubuntu1",
        "2:4.1.20+dfsg-1ubuntu2",
        "2:4.1.20+dfsg-1ubuntu3",
        "2:4.1.20+dfsg-1ubuntu5",
        "2:4.3.3+dfsg-1ubuntu1",
        "2:4.3.3+dfsg-1ubuntu2",
        "2:4.3.3+dfsg-1ubuntu3",
        "2:4.3.6+dfsg-1ubuntu1",
        "2:4.3.8+dfsg-0ubuntu1",
        "2:4.3.9+dfsg-0ubuntu0.16.04.1",
        "2:4.3.9+dfsg-0ubuntu0.16.04.2",
        "2:4.3.9+dfsg-0ubuntu0.16.04.3"
      ]
    }
  ],
  "aliases": [],
  "details": "Stefan Metzmacher discovered that Samba incorrectly handled certain flags\nin SMB2/3 client connections. A remote attacker could use this issue to\ndisable client signing and impersonate servers by performing a\nmachine-in-the-middle attack.\n\nSamba has been updated to 4.3.11 in Ubuntu 14.04 LTS and Ubuntu 16.04 LTS.\nIn addition to the security fix, the updated packages contain bug fixes,\nnew features, and possibly incompatible changes.\n",
  "id": "USN-3092-1",
  "modified": "2026-04-22T07:36:33Z",
  "published": "2016-09-28T16:52:30Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://ubuntu.com/security/notices/USN-3092-1"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2016-2119"
    }
  ],
  "related": [],
  "schema_version": "1.7.0",
  "summary": "samba vulnerability",
  "upstream": [
    "UBUNTU-CVE-2016-2119"
  ]
}



Log in or create an account to share your comment.




Tags
Taxonomy of the tags.


Loading…

Loading…

Loading…

Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.

Sightings

Author Source Type Date Other

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Loading…

Detection rules are retrieved from Rulezet.

Loading…

Loading…