A denial-of-service vulnerability for the AD-DC due to insuffiecient checking on asn1 memory allocation was reported. Upstream bug: https://bugzilla.samba.org/show_bug.cgi?id=9187
Created samba tracking bugs for this issue: Affects: fedora-all [bug 1292069]
External References: https://www.samba.org/samba/security/CVE-2015-7540.html
Upstream fixes as applied to 4.1.22: https://git.samba.org/?p=samba.git;a=commitdiff;h=530d50a1abdcdf4d1775652d4c456c1274d83d8d https://git.samba.org/?p=samba.git;a=commitdiff;h=9d989c9dd7a5b92d0c5d65287935471b83b6e884 Upstream advisory also indicates that newer samba versions (4.2+) were already fixed in Sep 2014.
This issue has been addressed in the following products: Red Hat Enterprise Linux 6 Via RHSA-2016:0010 https://rhn.redhat.com/errata/RHSA-2016-0010.html
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2016:0006 https://rhn.redhat.com/errata/RHSA-2016-0006.html
This issue has been addressed in the following products: Red Hat Gluster Storage 3.1 for RHEL 6 Via RHSA-2016:0015 https://rhn.redhat.com/errata/RHSA-2016-0015.html