Wind River Support Network

HomeDefectsLIN6-11127
Fixed

LIN6-11127 : Security Advisory - samba - CVE-2016-2112

Created: Apr 25, 2016    Updated: Dec 3, 2018
Resolved Date: Jun 17, 2016
Found In Version: 6.0.0.29
Fix Version: 6.0.0.30
Severity: Standard
Applicable for: Wind River Linux 6
Component/s: Userspace

Description

The bundled LDAP client library in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not recognize the client ldap sasl wrapping setting, which allows man-in-the-middle attackers to perform LDAP protocol-downgrade attacks by modifying the client-server data stream.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-2112

Other Downloads

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube