svn commit: r429658 - head/security/vuxml
    Timur I. Bakeyev 
    timur at FreeBSD.org
       
    Tue Dec 27 20:52:54 UTC 2016
    
    
  
Author: timur
Date: Tue Dec 27 20:52:52 2016
New Revision: 429658
URL: https://svnweb.freebsd.org/changeset/ports/429658
Log:
  Add entry for multiple samba 3.6.* - 4.4.* vulnerabilities.
  
  Security:	CVE-2016-2123
  		CVE-2016-2125
  		CVE-2016-2126
Modified:
  head/security/vuxml/vuln.xml
Modified: head/security/vuxml/vuln.xml
==============================================================================
--- head/security/vuxml/vuln.xml	Tue Dec 27 20:43:10 2016	(r429657)
+++ head/security/vuxml/vuln.xml	Tue Dec 27 20:52:52 2016	(r429658)
@@ -58,6 +58,69 @@ Notes:
   * Do not forget port variants (linux-f10-libxml2, libxml2, etc.)
 -->
 <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">
+  <vuln vid="e4bc323f-cc73-11e6-b704-000c292e4fd8">
+    <topic>samba -- multiple vulnerabilities</topic>
+    <affects>
+      <package>
+	<name>samba36</name>
+	<range><ge>3.6.0</ge><le>3.6.25_4</le></range>
+      </package>
+      <package>
+	<name>samba4</name>
+	<range><ge>4.0.0</ge><le>4.0.26</le></range>
+      </package>
+      <package>
+	<name>samba41</name>
+	<range><ge>4.1.0</ge><le>4.1.23</le></range>
+      </package>
+      <package>
+	<name>samba42</name>
+	<range><ge>4.2.0</ge><le>4.2.14</le></range>
+      </package>
+      <package>
+	<name>samba43</name>
+	<range><ge>4.3.0</ge><lt>4.3.13</lt></range>
+      </package>
+      <package>
+	<name>samba44</name>
+	<range><ge>4.4.0</ge><lt>4.4.8</lt></range>
+      </package>
+      <package>
+	<name>samba45</name>
+	<range><ge>4.5.0</ge><lt>4.5.3</lt></range>
+      </package>
+    </affects>
+    <description>
+      <body xmlns="http://www.w3.org/1999/xhtml">
+	<p>Samba team reports:</p>
+	<blockquote cite="https://www.samba.org/samba/latest_news.html#4.5.3">
+	  <p>[CVE-2016-2123] Authenicated users can supply malicious dnsRecord attributes
+	  on DNS objects and trigger a controlled memory corruption.</p>
+	  <p>[CVE-2016-2125] Samba client code always requests a forwardable ticket
+	  when using Kerberos authentication. This means the target server, which must be in the current or trusted
+	  domain/realm, is given a valid general purpose Kerberos "Ticket Granting Ticket" (TGT), which can be used to
+	  fully impersonate the authenticated user or service.</p>
+	  <p>[CVE-2016-2126] A remote, authenticated, attacker can cause the winbindd process
+	  to crash using a legitimate Kerberos ticket due to incorrect handling of the PAC checksum.
+	  A local service with access to the winbindd privileged pipe can cause winbindd to cache elevated access permissions.</p>
+	</blockquote>
+      </body>
+    </description>
+    <references>
+      <cvename>CVE-2016-2123</cvename>
+      <url>https://www.samba.org/samba/security/CVE-2016-2123.html</url>
+      <cvename>CVE-2016-2125</cvename>
+      <url>https://www.samba.org/samba/security/CVE-2016-2125.html</url>
+      <cvename>CVE-2016-2126</cvename>
+      <url>https://www.samba.org/samba/security/CVE-2016-2126.html</url>
+    </references>
+    <dates>
+      <discovery>2016-12-19</discovery>
+      <entry>2016-12-26</entry>
+      <modified>2016-12-26</modified>
+    </dates>
+  </vuln>
+
   <vuln vid="244c8288-cc4a-11e6-a475-bcaec524bf84">
     <topic>upnp -- multiple vulnerabilities</topic>
     <affects>
    
    
More information about the svn-ports-all
mailing list