Wind River Support Network


LIN6-11127 : Security Advisory - samba - CVE-2016-2112

Created: Apr 25, 2016    Updated: Dec 3, 2018
Resolved Date: Jun 17, 2016
Found In Version:
Fix Version:
Severity: Standard
Applicable for: Wind River Linux 6
Component/s: Userspace


The bundled LDAP client library in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not recognize the client ldap sasl wrapping setting, which allows man-in-the-middle attackers to perform LDAP protocol-downgrade attacks by modifying the client-server data stream.

Other Downloads

Live chat