Back to bug 1312084

Who When What Removed Added
Adam Mariš 2016-02-25 17:08:14 UTC CC security-response-team
Red Hat Bugzilla 2016-02-25 17:08:14 UTC Doc Type --- Bug Fix
Adam Mariš 2016-02-25 17:10:15 UTC Blocks 1311915
Huzaifa S. Sidhpurwala 2016-03-29 09:15:20 UTC Whiteboard impact=moderate,public=no,reported=20160225,source=upstream,cvss2=5.8/AV:N/AC:M/Au:N/C:P/I:P/A:N,cwe=CWE-300,rhel-5/samba=new,rhel-5/samba3x=new,rhel-6/samba4=new,rhel-6/samba=new,rhel-7/samba=new,rhes-3.1/samba=new,fedora-all/samba=affected impact=moderate,public=no,reported=20160225,source=upstream,cvss2=5.8/AV:N/AC:M/Au:N/C:P/I:P/A:N,cwe=CWE-300,rhel-5/samba=affected,rhel-5/samba3x=affected,rhel-6/samba4=affected,rhel-6/samba=affected,rhel-7/samba=affected,rhes-3.1/samba=affected,fedora-all/samba=affected
Huzaifa S. Sidhpurwala 2016-03-31 06:29:06 UTC Depends On 1322684
Huzaifa S. Sidhpurwala 2016-03-31 06:29:16 UTC Depends On 1322685
Huzaifa S. Sidhpurwala 2016-03-31 06:29:23 UTC Depends On 1322686
Huzaifa S. Sidhpurwala 2016-03-31 06:29:33 UTC Depends On 1322687
Huzaifa S. Sidhpurwala 2016-03-31 06:29:41 UTC Depends On 1322688
Huzaifa S. Sidhpurwala 2016-03-31 06:29:51 UTC Depends On 1322689
Huzaifa S. Sidhpurwala 2016-03-31 06:29:59 UTC Depends On 1322690
Huzaifa S. Sidhpurwala 2016-03-31 06:30:09 UTC Depends On 1322691
Huzaifa S. Sidhpurwala 2016-03-31 06:30:17 UTC Depends On 1322692
Huzaifa S. Sidhpurwala 2016-03-31 08:23:21 UTC CC abokovoy, madam
Huzaifa S. Sidhpurwala 2016-03-31 08:32:56 UTC CC rhack
Huzaifa S. Sidhpurwala 2016-04-07 10:40:31 UTC Whiteboard impact=moderate,public=no,reported=20160225,source=upstream,cvss2=5.8/AV:N/AC:M/Au:N/C:P/I:P/A:N,cwe=CWE-300,rhel-5/samba=affected,rhel-5/samba3x=affected,rhel-6/samba4=affected,rhel-6/samba=affected,rhel-7/samba=affected,rhes-3.1/samba=affected,fedora-all/samba=affected impact=moderate,public=no,reported=20160225,source=upstream,cvss2=5.8/AV:N/AC:M/Au:N/C:P/I:P/A:N,cwe=CWE-300,rhel-5/samba=affected,rhel-5/samba3x=affected,rhel-6/samba4=affected,rhel-6/samba=affected,rhel-7/samba=affected,rhes-3.1/samba=affected,fedora-all/samba=affected,rhel-4/samba=affected,rhel-5.6.z/samba=affected,rhel-5.9.z/samba=affected,rhel-6.2.z/samba=affected,rhel-6.4.z/samba=affected,rhel-6.5.z/samba=affected,rhel-6.6.z/samba=affected,rhel-7.1.z/samba=affected
Huzaifa S. Sidhpurwala 2016-04-07 10:42:50 UTC Depends On 1324800
Huzaifa S. Sidhpurwala 2016-04-07 10:42:59 UTC Depends On 1324801
Huzaifa S. Sidhpurwala 2016-04-07 10:43:07 UTC Depends On 1324802
Huzaifa S. Sidhpurwala 2016-04-07 10:43:17 UTC Depends On 1324803
Huzaifa S. Sidhpurwala 2016-04-07 10:43:25 UTC Depends On 1324804
Huzaifa S. Sidhpurwala 2016-04-07 10:43:34 UTC Depends On 1324805
Huzaifa S. Sidhpurwala 2016-04-07 10:43:42 UTC Depends On 1324806
Huzaifa S. Sidhpurwala 2016-04-07 10:43:52 UTC Depends On 1324807
Huzaifa S. Sidhpurwala 2016-04-08 16:00:15 UTC Whiteboard impact=moderate,public=no,reported=20160225,source=upstream,cvss2=5.8/AV:N/AC:M/Au:N/C:P/I:P/A:N,cwe=CWE-300,rhel-5/samba=affected,rhel-5/samba3x=affected,rhel-6/samba4=affected,rhel-6/samba=affected,rhel-7/samba=affected,rhes-3.1/samba=affected,fedora-all/samba=affected,rhel-4/samba=affected,rhel-5.6.z/samba=affected,rhel-5.9.z/samba=affected,rhel-6.2.z/samba=affected,rhel-6.4.z/samba=affected,rhel-6.5.z/samba=affected,rhel-6.6.z/samba=affected,rhel-7.1.z/samba=affected impact=moderate,public=no,reported=20160225,source=upstream,cvss2=5.8/AV:N/AC:M/Au:N/C:P/I:P/A:N,cwe=CWE-300,rhel-5/samba=affected,rhel-5/samba3x=affected,rhel-6/samba4=affected,rhel-6/samba=affected,rhel-7/samba=affected,rhes-3.1/samba=affected,fedora-all/samba=affected,rhel-4/samba=affected,rhel-5.6.z/samba=affected,rhel-5.9.z/samba=affected,rhel-6.2.z/samba=affected,rhel-6.4.z/samba=affected,rhel-6.5.z/samba=affected,rhel-6.6.z/samba=affected,rhel-7.1.z/samba=affected,rhel-6.2.z/samba4=affected,rhel-6.4.z/samba4=affected,rhel-6.5.z/samba4=affected,rhel-6.6.z/samba4=affected
Huzaifa S. Sidhpurwala 2016-04-08 16:03:06 UTC Depends On 1325382
Huzaifa S. Sidhpurwala 2016-04-08 16:03:18 UTC Depends On 1325383
Huzaifa S. Sidhpurwala 2016-04-08 16:03:28 UTC Depends On 1325384
Huzaifa S. Sidhpurwala 2016-04-08 16:03:40 UTC Depends On 1325385
Huzaifa S. Sidhpurwala 2016-04-09 05:15:54 UTC Doc Text It was found that man-in-the-middle attacks were possible against IPC traffic. The protection of DCEPRC communication is inherited from the underlying SMB connections, which is not integrity protected, this result in a attacker being able to view and modify the data between samba servers and clients.
Huzaifa S. Sidhpurwala 2016-04-09 08:45:44 UTC Doc Text It was found that man-in-the-middle attacks were possible against IPC traffic. The protection of DCEPRC communication is inherited from the underlying SMB connections, which is not integrity protected, this result in a attacker being able to view and modify the data between samba servers and clients. It was found that man-in-the-middle attacks were possible against IPC traffic. The protection of DCEPRC communication is inherited from the underlying SMB connections, which is not integrity protected, this result in a attacker being able to view and modify the data between samba servers
and clients.
Huzaifa S. Sidhpurwala 2016-04-10 11:15:59 UTC Depends On 1325645
Huzaifa S. Sidhpurwala 2016-04-10 11:23:48 UTC Depends On 1325649
Huzaifa S. Sidhpurwala 2016-04-10 11:24:03 UTC Depends On 1325650
Huzaifa S. Sidhpurwala 2016-04-10 11:24:15 UTC Depends On 1325651
Huzaifa S. Sidhpurwala 2016-04-11 05:38:24 UTC Whiteboard impact=moderate,public=no,reported=20160225,source=upstream,cvss2=5.8/AV:N/AC:M/Au:N/C:P/I:P/A:N,cwe=CWE-300,rhel-5/samba=affected,rhel-5/samba3x=affected,rhel-6/samba4=affected,rhel-6/samba=affected,rhel-7/samba=affected,rhes-3.1/samba=affected,fedora-all/samba=affected,rhel-4/samba=affected,rhel-5.6.z/samba=affected,rhel-5.9.z/samba=affected,rhel-6.2.z/samba=affected,rhel-6.4.z/samba=affected,rhel-6.5.z/samba=affected,rhel-6.6.z/samba=affected,rhel-7.1.z/samba=affected,rhel-6.2.z/samba4=affected,rhel-6.4.z/samba4=affected,rhel-6.5.z/samba4=affected,rhel-6.6.z/samba4=affected impact=moderate,public=20160412,reported=20160225,source=upstream,cvss2=5.8/AV:N/AC:M/Au:N/C:P/I:P/A:N,cwe=CWE-300,rhel-5/samba=affected,rhel-5/samba3x=affected,rhel-6/samba4=affected,rhel-6/samba=affected,rhel-7/samba=affected,rhes-3.1/samba=affected,fedora-all/samba=affected,rhel-4/samba=affected,rhel-5.6.z/samba=affected,rhel-5.9.z/samba=affected,rhel-6.2.z/samba=affected,rhel-6.4.z/samba=affected,rhel-6.5.z/samba=affected,rhel-6.6.z/samba=affected,rhel-7.1.z/samba=affected,rhel-6.2.z/samba4=affected,rhel-6.4.z/samba4=affected,rhel-6.5.z/samba4=affected,rhel-6.6.z/samba4=affected
Martin Prpič 2016-04-11 07:22:59 UTC Doc Text It was found that man-in-the-middle attacks were possible against IPC traffic. The protection of DCEPRC communication is inherited from the underlying SMB connections, which is not integrity protected, this result in a attacker being able to view and modify the data between samba servers
and clients. 		It was found that Samba did not enable integrity protection for IPC traffic by default. A man-in-the-middle attacker could use this flaw to view and modify the data sent between a Samba server and a client.
Huzaifa S. Sidhpurwala 2016-04-11 10:35:06 UTC Whiteboard impact=moderate,public=20160412,reported=20160225,source=upstream,cvss2=5.8/AV:N/AC:M/Au:N/C:P/I:P/A:N,cwe=CWE-300,rhel-5/samba=affected,rhel-5/samba3x=affected,rhel-6/samba4=affected,rhel-6/samba=affected,rhel-7/samba=affected,rhes-3.1/samba=affected,fedora-all/samba=affected,rhel-4/samba=affected,rhel-5.6.z/samba=affected,rhel-5.9.z/samba=affected,rhel-6.2.z/samba=affected,rhel-6.4.z/samba=affected,rhel-6.5.z/samba=affected,rhel-6.6.z/samba=affected,rhel-7.1.z/samba=affected,rhel-6.2.z/samba4=affected,rhel-6.4.z/samba4=affected,rhel-6.5.z/samba4=affected,rhel-6.6.z/samba4=affected impact=moderate,public=20160412,reported=20160225,source=upstream,cvss2=5.8/AV:N/AC:M/Au:N/C:P/I:P/A:N,cwe=CWE-300,rhel-5/samba=affected,rhel-5/samba3x=affected,rhel-6/samba4=affected,rhel-6/samba=affected,rhel-7/samba=affected,rhes-3.1/samba=affected,fedora-all/samba=affected,rhel-4/samba=affected,rhel-5.6.z/samba=affected,rhel-5.9.z/samba=affected,rhel-6.2.z/samba=affected,rhel-6.4.z/samba=affected,rhel-6.5.z/samba=affected,rhel-6.6.z/samba=affected,rhel-7.1.z/samba=affected,rhel-6.2.z/samba4=affected,rhel-6.4.z/samba4=affected,rhel-6.5.z/samba4=affected,rhel-6.6.z/samba4=affected,rhel-5.6.z/samba3x=affected,rhel-5.9.z/samba3x=affected
Huzaifa S. Sidhpurwala 2016-04-11 10:37:14 UTC Depends On 1325832
Huzaifa S. Sidhpurwala 2016-04-11 10:39:10 UTC Depends On 1325838
Jose A. Rivera 2016-04-12 12:28:28 UTC Status NEW ON_QA
Fixed In Version 4.2.11-1
Tomas Hoger 2016-04-12 12:38:08 UTC Status ON_QA NEW
Fixed In Version 4.2.11-1
Huzaifa S. Sidhpurwala 2016-04-12 14:20:59 UTC Depends On 1326361
Huzaifa S. Sidhpurwala 2016-04-12 14:21:27 UTC Depends On 1326362
Huzaifa S. Sidhpurwala 2016-04-12 14:22:06 UTC Depends On 1326364
Huzaifa S. Sidhpurwala 2016-04-12 14:22:14 UTC Depends On 1326365
Huzaifa S. Sidhpurwala 2016-04-12 14:26:29 UTC Depends On 1326368
Huzaifa S. Sidhpurwala 2016-04-12 14:26:48 UTC Depends On 1326369
Huzaifa S. Sidhpurwala 2016-04-12 14:29:52 UTC Depends On 1326370
Huzaifa S. Sidhpurwala 2016-04-12 17:12:50 UTC Group security, qe_staff
Summary EMBARGOED CVE-2016-2115 samba: Smb signing not required by default when smb client connection is used for ipc usage CVE-2016-2115 samba: Smb signing not required by default when smb client connection is used for ipc usage
Siddharth Sharma 2016-04-12 17:27:46 UTC Depends On 1326453
Tomas Hoger 2016-04-12 20:35:25 UTC Fixed In Version samba 4.4.2, samba 4.3.8, samba 4.2.11
Tomas Hoger 2016-04-13 11:56:19 UTC Depends On 1326369
Tomas Hoger 2016-04-13 11:58:53 UTC Depends On 1326368
Tomas Hoger 2016-04-13 11:59:04 UTC Depends On 1326370
Tomas Hoger 2016-04-13 12:03:03 UTC Depends On 1326365
Tomas Hoger 2016-04-13 12:03:11 UTC Depends On 1326364
Tomas Hoger 2016-04-13 12:03:13 UTC Depends On 1326362
Tomas Hoger 2016-04-13 12:03:17 UTC Depends On 1326361
Tomas Hoger 2016-04-13 12:47:43 UTC Fixed In Version samba 4.4.2, samba 4.3.8, samba 4.2.11 samba 4.4.1, samba 4.3.7, samba 4.2.10
Simon Atwater 2016-04-14 19:02:04 UTC CC simon.atwater
Huzaifa S. Sidhpurwala 2016-04-19 05:29:10 UTC Status NEW CLOSED
Resolution --- ERRATA
Last Closed 2016-04-19 01:29:10 UTC
Product Security DevOps Team 2019-09-29 13:45:06 UTC Whiteboard impact=moderate,public=20160412,reported=20160225,source=upstream,cvss2=5.8/AV:N/AC:M/Au:N/C:P/I:P/A:N,cwe=CWE-300,rhel-5/samba=affected,rhel-5/samba3x=affected,rhel-6/samba4=affected,rhel-6/samba=affected,rhel-7/samba=affected,rhes-3.1/samba=affected,fedora-all/samba=affected,rhel-4/samba=affected,rhel-5.6.z/samba=affected,rhel-5.9.z/samba=affected,rhel-6.2.z/samba=affected,rhel-6.4.z/samba=affected,rhel-6.5.z/samba=affected,rhel-6.6.z/samba=affected,rhel-7.1.z/samba=affected,rhel-6.2.z/samba4=affected,rhel-6.4.z/samba4=affected,rhel-6.5.z/samba4=affected,rhel-6.6.z/samba4=affected,rhel-5.6.z/samba3x=affected,rhel-5.9.z/samba3x=affected

Back to bug 1312084