[3.6] samba: Multiple vulnerabilities (CVE-2018-1050, CVE-2018-1057)
CVE-2018-1050: Denial of Service Attack on external print server.
Affected Versions:
All versions of Samba from 4.0.0 onwards.
Fixed In Version:
Samba 4.7.6, 4.6.14 and 4.5.16.
References:
https://www.samba.org/samba/security/CVE-2018-1050.html
https://www.samba.org/samba/history/security.html
CVE-2018-1057: Authenticated users can change other users’ password
Affected Versions:
All versions of Samba from 4.0.0 onwards.
Fixed In Version:
Samba 4.7.6, 4.6.14 and 4.5.16.
All versions of Samba from 4.0.0 onwards.
References:
https://www.samba.org/samba/security/CVE-2018-1057.html
https://www.samba.org/samba/history/security.html
(from redmine: issue id 8656, created on 2018-03-15, closed on 2018-03-21)
- Relations:
- copied_to #8653 (closed)
- parent #8653 (closed)