ALPINE-CVE-2016-2126

Source
https://security.alpinelinux.org/vuln/CVE-2016-2126
Import Source
https://storage.googleapis.com/cve-osv-conversion/alpine/ALPINE-CVE-2016-2126.json
JSON Data
https://api.osv.dev/v1/vulns/ALPINE-CVE-2016-2126
Upstream
Published
2017-05-11T14:29:58.077Z
Modified
2026-07-08T04:30:07.397891652Z
Severity
  • 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

Samba version 4.0.0 up to 4.5.2 is vulnerable to privilege elevation due to incorrect handling of the PAC (Privilege Attribute Certificate) checksum. A remote, authenticated, attacker can cause the winbindd process to crash using a legitimate Kerberos ticket. A local service with access to the winbindd privileged pipe can cause winbindd to cache elevated access permissions.

References

Affected packages

Alpine:v3.2 / samba

Package

Name
samba
Purl
pkg:apk/alpine/samba?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
4.0.0
Fixed
4.2.14-r1

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/alpine/ALPINE-CVE-2016-2126.json"

Alpine:v3.3 / samba

Package

Name
samba
Purl
pkg:apk/alpine/samba?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
4.0.0
Fixed
4.2.14-r1

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/alpine/ALPINE-CVE-2016-2126.json"

Alpine:v3.4 / samba

Package

Name
samba
Purl
pkg:apk/alpine/samba?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
4.0.0
Fixed
4.4.5-r2

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/alpine/ALPINE-CVE-2016-2126.json"