CVE-2016-2114

The SMB1 protocol implementation in Samba 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not recognize the "server signing = mandatory" setting, which allows man-in-the-middle attackers to spoof SMB servers by modifying the client-server data stream.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.9 MEDIUM
NETWORK
HIGH
NONE
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 90%
Affected Products (NVD)
VendorProductVersion
sambasamba
4.0.0
sambasamba
4.0.1
sambasamba
4.0.2
sambasamba
4.0.3
sambasamba
4.0.4
sambasamba
4.0.5
sambasamba
4.0.6
sambasamba
4.0.7
sambasamba
4.0.8
sambasamba
4.0.9
sambasamba
4.0.10
sambasamba
4.0.11
sambasamba
4.0.12
sambasamba
4.0.13
sambasamba
4.0.14
sambasamba
4.0.15
sambasamba
4.0.16
sambasamba
4.0.17
sambasamba
4.0.18
sambasamba
4.0.19
sambasamba
4.0.20
sambasamba
4.0.21
sambasamba
4.0.22
sambasamba
4.0.23
sambasamba
4.0.24
sambasamba
4.0.25
sambasamba
4.0.26
sambasamba
4.1.0
sambasamba
4.1.1
sambasamba
4.1.2
sambasamba
4.1.3
sambasamba
4.1.4
sambasamba
4.1.5
sambasamba
4.1.6
sambasamba
4.1.7
sambasamba
4.1.8
sambasamba
4.1.9
sambasamba
4.1.10
sambasamba
4.1.11
sambasamba
4.1.12
sambasamba
4.1.13
sambasamba
4.1.14
sambasamba
4.1.15
sambasamba
4.1.16
sambasamba
4.1.17
sambasamba
4.1.18
sambasamba
4.1.19
sambasamba
4.1.20
sambasamba
4.1.21
sambasamba
4.1.22
sambasamba
4.1.23
sambasamba
4.2.0:rc1
sambasamba
4.2.0:rc2
sambasamba
4.2.0:rc3
sambasamba
4.2.0:rc4
sambasamba
4.2.1
sambasamba
4.2.2
sambasamba
4.2.3
sambasamba
4.2.4
sambasamba
4.2.5
sambasamba
4.2.6
sambasamba
4.2.7
sambasamba
4.2.8
sambasamba
4.2.9
sambasamba
4.3.0
sambasamba
4.3.1
sambasamba
4.3.2
sambasamba
4.3.3
sambasamba
4.3.4
sambasamba
4.3.5
sambasamba
4.3.6
sambasamba
4.4.0
canonicalubuntu_linux
14.04
canonicalubuntu_linux
15.10
canonicalubuntu_linux
16.04
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
samba
bookworm
2:4.17.12+dfsg-0+deb12u1
fixed
bookworm (security)
2:4.17.12+dfsg-0+deb12u1
fixed
bullseye
2:4.13.13+dfsg-1~deb11u6
fixed
bullseye (security)
2:4.13.13+dfsg-1~deb11u6
fixed
sid
2:4.21.1+dfsg-2
fixed
trixie
2:4.21.1+dfsg-2
fixed
wheezy
not-affected
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
samba
precise
not-affected
trusty
Fixed 2:4.3.8+dfsg-0ubuntu0.14.04.2
released
wily
Fixed 2:4.3.8+dfsg-0ubuntu0.15.10.2
released
xenial
Fixed 2:4.3.8+dfsg-0ubuntu1
released
yakkety
Fixed 2:4.3.8+dfsg-0ubuntu1
released
zesty
Fixed 2:4.3.8+dfsg-0ubuntu1
released
samba4
precise
ignored
trusty
dne
wily
dne
xenial
dne
yakkety
dne
zesty
dne
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
ctdb
RHEL 7
0:4.2.10-6.el7_2
fixed
ctdb-devel
RHEL 7
0:4.2.10-6.el7_2
fixed
ctdb-tests
RHEL 7
0:4.2.10-6.el7_2
fixed
ipa-admintools
RHEL 6
0:3.0.0-47.el6_7.2
fixed
RHEL 7
0:4.2.0-15.el7_2.6.1
fixed
ipa-client
RHEL 6
0:3.0.0-47.el6_7.2
fixed
RHEL 7
0:4.2.0-15.el7_2.6.1
fixed
ipa-python
RHEL 6
0:3.0.0-47.el6_7.2
fixed
RHEL 7
0:4.2.0-15.el7_2.6.1
fixed
ipa-server
RHEL 6
0:3.0.0-47.el6_7.2
fixed
RHEL 7
0:4.2.0-15.el7_2.6.1
fixed
ipa-server-dns
RHEL 7
0:4.2.0-15.el7_2.6.1
fixed
ipa-server-selinux
RHEL 6
0:3.0.0-47.el6_7.2
fixed
ipa-server-trust-ad
RHEL 6
0:3.0.0-47.el6_7.2
fixed
RHEL 7
0:4.2.0-15.el7_2.6.1
fixed
ldb-tools
RHEL 6
0:1.1.25-2.el6_7
fixed
RHEL 7
0:1.1.25-1.el7_2
fixed
libldb
RHEL 6
0:1.1.25-2.el6_7
fixed
RHEL 7
0:1.1.25-1.el7_2
fixed
libldb-devel
RHEL 6
0:1.1.25-2.el6_7
fixed
RHEL 7
0:1.1.25-1.el7_2
fixed
libsmbclient
RHEL 7
0:4.2.10-6.el7_2
fixed
libsmbclient-devel
RHEL 7
0:4.2.10-6.el7_2
fixed
libtalloc
RHEL 6
0:2.1.5-1.el6_7
fixed
RHEL 7
0:2.1.5-1.el7_2
fixed
libtalloc-devel
RHEL 6
0:2.1.5-1.el6_7
fixed
RHEL 7
0:2.1.5-1.el7_2
fixed
libtdb
RHEL 6
0:1.3.8-1.el6_7
fixed
RHEL 7
0:1.3.8-1.el7_2
fixed
libtdb-devel
RHEL 6
0:1.3.8-1.el6_7
fixed
RHEL 7
0:1.3.8-1.el7_2
fixed
libtevent
RHEL 6
0:0.9.26-2.el6_7
fixed
RHEL 7
0:0.9.26-1.el7_2
fixed
libtevent-devel
RHEL 6
0:0.9.26-2.el6_7
fixed
RHEL 7
0:0.9.26-1.el7_2
fixed
libwbclient
RHEL 7
0:4.2.10-6.el7_2
fixed
libwbclient-devel
RHEL 7
0:4.2.10-6.el7_2
fixed
openchange
RHEL 6
0:1.0-7.el6_7
fixed
RHEL 7
0:2.0-10.el7_2
fixed
openchange-client
RHEL 6
0:1.0-7.el6_7
fixed
RHEL 7
0:2.0-10.el7_2
fixed
openchange-devel
RHEL 6
0:1.0-7.el6_7
fixed
RHEL 7
0:2.0-10.el7_2
fixed
openchange-devel-docs
RHEL 6
0:1.0-7.el6_7
fixed
RHEL 7
0:2.0-10.el7_2
fixed
pyldb
RHEL 6
0:1.1.25-2.el6_7
fixed
RHEL 7
0:1.1.25-1.el7_2
fixed
pyldb-devel
RHEL 6
0:1.1.25-2.el6_7
fixed
RHEL 7
0:1.1.25-1.el7_2
fixed
pytalloc
RHEL 6
0:2.1.5-1.el6_7
fixed
RHEL 7
0:2.1.5-1.el7_2
fixed
pytalloc-devel
RHEL 6
0:2.1.5-1.el6_7
fixed
RHEL 7
0:2.1.5-1.el7_2
fixed
python-tdb
RHEL 6
0:1.3.8-1.el6_7
fixed
RHEL 7
0:1.3.8-1.el7_2
fixed
python-tevent
RHEL 6
0:0.9.26-2.el6_7
fixed
RHEL 7
0:0.9.26-1.el7_2
fixed
samba
RHEL 7
0:4.2.10-6.el7_2
fixed
samba-client
RHEL 7
0:4.2.10-6.el7_2
fixed
samba-client-libs
RHEL 7
0:4.2.10-6.el7_2
fixed
samba-common
RHEL 7
0:4.2.10-6.el7_2
fixed
samba-common-libs
RHEL 7
0:4.2.10-6.el7_2
fixed
samba-common-tools
RHEL 7
0:4.2.10-6.el7_2
fixed
samba-dc
RHEL 7
0:4.2.10-6.el7_2
fixed
samba-dc-libs
RHEL 7
0:4.2.10-6.el7_2
fixed
samba-devel
RHEL 7
0:4.2.10-6.el7_2
fixed
samba-libs
RHEL 7
0:4.2.10-6.el7_2
fixed
samba-pidl
RHEL 7
0:4.2.10-6.el7_2
fixed
samba-python
RHEL 7
0:4.2.10-6.el7_2
fixed
samba-test
RHEL 7
0:4.2.10-6.el7_2
fixed
samba-test-devel
RHEL 7
0:4.2.10-6.el7_2
fixed
samba-test-libs
RHEL 7
0:4.2.10-6.el7_2
fixed
samba-vfs-glusterfs
RHEL 7
0:4.2.10-6.el7_2
fixed
samba-winbind
RHEL 7
0:4.2.10-6.el7_2
fixed
samba-winbind-clients
RHEL 7
0:4.2.10-6.el7_2
fixed
samba-winbind-krb5-locator
RHEL 7
0:4.2.10-6.el7_2
fixed
samba-winbind-modules
RHEL 7
0:4.2.10-6.el7_2
fixed
samba4
RHEL 6
0:4.2.10-6.el6_7
fixed
samba4-client
RHEL 6
0:4.2.10-6.el6_7
fixed
samba4-common
RHEL 6
0:4.2.10-6.el6_7
fixed
samba4-dc
RHEL 6
0:4.2.10-6.el6_7
fixed
samba4-dc-libs
RHEL 6
0:4.2.10-6.el6_7
fixed
samba4-devel
RHEL 6
0:4.2.10-6.el6_7
fixed
samba4-libs
RHEL 6
0:4.2.10-6.el6_7
fixed
samba4-pidl
RHEL 6
0:4.2.10-6.el6_7
fixed
samba4-python
RHEL 6
0:4.2.10-6.el6_7
fixed
samba4-test
RHEL 6
0:4.2.10-6.el6_7
fixed
samba4-winbind
RHEL 6
0:4.2.10-6.el6_7
fixed
samba4-winbind-clients
RHEL 6
0:4.2.10-6.el6_7
fixed
samba4-winbind-krb5-locator
RHEL 6
0:4.2.10-6.el6_7
fixed
tdb-tools
RHEL 6
0:1.3.8-1.el6_7
fixed
RHEL 7
0:1.3.8-1.el7_2
fixed
Common Weakness Enumeration
References
http://badlock.org/
http://lists.fedoraproject.org/pipermail/package-announce/2016-April/182185.html
http://lists.fedoraproject.org/pipermail/package-announce/2016-April/182272.html
http://lists.fedoraproject.org/pipermail/package-announce/2016-April/182288.html
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00047.html
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00048.html
http://rhn.redhat.com/errata/RHSA-2016-0612.html
http://rhn.redhat.com/errata/RHSA-2016-0614.html
http://rhn.redhat.com/errata/RHSA-2016-0618.html
http://rhn.redhat.com/errata/RHSA-2016-0620.html
http://www.debian.org/security/2016/dsa-3548
http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
http://www.securityfocus.com/bid/86011
http://www.securitytracker.com/id/1035533
http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.458012
http://www.ubuntu.com/usn/USN-2950-1
http://www.ubuntu.com/usn/USN-2950-2
http://www.ubuntu.com/usn/USN-2950-3
http://www.ubuntu.com/usn/USN-2950-4
http://www.ubuntu.com/usn/USN-2950-5
https://bto.bluecoat.com/security-advisory/sa122
https://security.gentoo.org/glsa/201612-47
https://www.samba.org/samba/history/samba-4.2.10.html
https://www.samba.org/samba/latest_news.html#4.4.2
https://www.samba.org/samba/security/CVE-2016-2114.html
http://badlock.org/
http://lists.fedoraproject.org/pipermail/package-announce/2016-April/182185.html
http://lists.fedoraproject.org/pipermail/package-announce/2016-April/182272.html
http://lists.fedoraproject.org/pipermail/package-announce/2016-April/182288.html
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00047.html
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00048.html
http://rhn.redhat.com/errata/RHSA-2016-0612.html
http://rhn.redhat.com/errata/RHSA-2016-0614.html
http://rhn.redhat.com/errata/RHSA-2016-0618.html
http://rhn.redhat.com/errata/RHSA-2016-0620.html
http://www.debian.org/security/2016/dsa-3548
http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
http://www.securityfocus.com/bid/86011
http://www.securitytracker.com/id/1035533
http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.458012
http://www.ubuntu.com/usn/USN-2950-1
http://www.ubuntu.com/usn/USN-2950-2
http://www.ubuntu.com/usn/USN-2950-3
http://www.ubuntu.com/usn/USN-2950-4
http://www.ubuntu.com/usn/USN-2950-5
https://bto.bluecoat.com/security-advisory/sa122
https://security.gentoo.org/glsa/201612-47
https://www.samba.org/samba/history/samba-4.2.10.html
https://www.samba.org/samba/latest_news.html#4.4.2
https://www.samba.org/samba/security/CVE-2016-2114.html