USN-3158-1

See a problem?
Source
https://ubuntu.com/security/notices/USN-3158-1
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/USN-3158-1.json
JSON Data
https://api.osv.dev/v1/vulns/USN-3158-1
Related
Published
2016-12-19T17:34:58.822245Z
Modified
2016-12-19T17:34:58.822245Z
Summary
samba vulnerabilities
Details

Frederic Besler and others discovered that the ndrpulldnsp_nam function in Samba contained an integer overflow. An authenticated attacker could use this to gain administrative privileges. This issue only affected Ubuntu 14.04 LTS, Ubuntu 16.04 LTS, and Ubuntu 16.10. (CVE-2016-2123)

Simo Sorce discovered that that Samba clients always requested a forwardable ticket when using Kerberos authentication. An attacker could use this to impersonate an authenticated user or service. (CVE-2016-2125)

Volker Lendecke discovered that Kerberos PAC validation implementation in Samba contained multiple vulnerabilities. An authenticated attacker could use this to cause a denial of service or gain administrative privileges. This issue only affected Ubuntu 14.04 LTS, Ubuntu 16.04 LTS, and Ubuntu 16.10. (CVE-2016-2126)

References

Affected packages

Ubuntu:14.04:LTS / samba

Package

Name
samba

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2:4.3.11+dfsg-0ubuntu0.14.04.4

Ecosystem specific

{
    "availability": "No subscription needed",
    "binaries": [
        {
            "libwbclient0": "2:4.3.11+dfsg-0ubuntu0.14.04.4",
            "libwbclient-dev": "2:4.3.11+dfsg-0ubuntu0.14.04.4",
            "samba-libs": "2:4.3.11+dfsg-0ubuntu0.14.04.4",
            "samba-dsdb-modules": "2:4.3.11+dfsg-0ubuntu0.14.04.4",
            "samba-common-bin": "2:4.3.11+dfsg-0ubuntu0.14.04.4",
            "registry-tools": "2:4.3.11+dfsg-0ubuntu0.14.04.4",
            "python-samba": "2:4.3.11+dfsg-0ubuntu0.14.04.4",
            "samba": "2:4.3.11+dfsg-0ubuntu0.14.04.4",
            "samba-doc": "2:4.3.11+dfsg-0ubuntu0.14.04.4",
            "libnss-winbind": "2:4.3.11+dfsg-0ubuntu0.14.04.4",
            "samba-vfs-modules": "2:4.3.11+dfsg-0ubuntu0.14.04.4",
            "winbind": "2:4.3.11+dfsg-0ubuntu0.14.04.4",
            "libsmbsharemodes0": "2:4.3.11+dfsg-0ubuntu0.14.04.4",
            "samba-common": "2:4.3.11+dfsg-0ubuntu0.14.04.4",
            "libpam-winbind": "2:4.3.11+dfsg-0ubuntu0.14.04.4",
            "smbclient": "2:4.3.11+dfsg-0ubuntu0.14.04.4",
            "samba-testsuite": "2:4.3.11+dfsg-0ubuntu0.14.04.4",
            "samba-dev": "2:4.3.11+dfsg-0ubuntu0.14.04.4",
            "libparse-pidl-perl": "2:4.3.11+dfsg-0ubuntu0.14.04.4",
            "libpam-smbpass": "2:4.3.11+dfsg-0ubuntu0.14.04.4",
            "libsmbsharemodes-dev": "2:4.3.11+dfsg-0ubuntu0.14.04.4",
            "libsmbclient": "2:4.3.11+dfsg-0ubuntu0.14.04.4",
            "libsmbclient-dev": "2:4.3.11+dfsg-0ubuntu0.14.04.4"
        }
    ]
}

Ubuntu:16.04:LTS / samba

Package

Name
samba

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2:4.3.11+dfsg-0ubuntu0.16.04.3

Ecosystem specific

{
    "availability": "No subscription needed",
    "binaries": [
        {
            "libwbclient-dev": "2:4.3.11+dfsg-0ubuntu0.16.04.3",
            "python-samba": "2:4.3.11+dfsg-0ubuntu0.16.04.3",
            "samba-dsdb-modules": "2:4.3.11+dfsg-0ubuntu0.16.04.3",
            "samba-common-bin": "2:4.3.11+dfsg-0ubuntu0.16.04.3",
            "registry-tools": "2:4.3.11+dfsg-0ubuntu0.16.04.3",
            "samba-libs": "2:4.3.11+dfsg-0ubuntu0.16.04.3",
            "ctdb": "2:4.3.11+dfsg-0ubuntu0.16.04.3",
            "libnss-winbind": "2:4.3.11+dfsg-0ubuntu0.16.04.3",
            "samba-vfs-modules": "2:4.3.11+dfsg-0ubuntu0.16.04.3",
            "winbind": "2:4.3.11+dfsg-0ubuntu0.16.04.3",
            "samba-common": "2:4.3.11+dfsg-0ubuntu0.16.04.3",
            "libpam-winbind": "2:4.3.11+dfsg-0ubuntu0.16.04.3",
            "smbclient": "2:4.3.11+dfsg-0ubuntu0.16.04.3",
            "samba-testsuite": "2:4.3.11+dfsg-0ubuntu0.16.04.3",
            "samba-dev": "2:4.3.11+dfsg-0ubuntu0.16.04.3",
            "libparse-pidl-perl": "2:4.3.11+dfsg-0ubuntu0.16.04.3",
            "libsmbclient": "2:4.3.11+dfsg-0ubuntu0.16.04.3",
            "samba": "2:4.3.11+dfsg-0ubuntu0.16.04.3",
            "libwbclient0": "2:4.3.11+dfsg-0ubuntu0.16.04.3",
            "libsmbclient-dev": "2:4.3.11+dfsg-0ubuntu0.16.04.3"
        }
    ]
}