The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

security announce CVE-2018-16860

Samba: Man-in-the-Middle

Synthesis of the vulnerability

An attacker can act as a Man-in-the-Middle on Samba, in order to read or write data in the session.
Severity of this bulletin: 2/4.
Creation date: 14/05/2019.
Références of this threat: CERTFR-2019-AVI-206, CVE-2018-16860, DLA-1788-1, DSA-4443-1, DSA-4455-1, FEDORA-2019-208cc34d40, FEDORA-2019-307e117a2e, HT210346, HT210348, openSUSE-SU-2019:1682-1, openSUSE-SU-2019:1688-1, openSUSE-SU-2019:1888-1, Synology-SA-19:23, USN-3976-1, USN-3976-2, USN-3976-3, USN-3976-4, VIGILANCE-VUL-29289.
Full Vigil@nce bulletin... (Free trial)

Description of the vulnerability

An attacker can act as a Man-in-the-Middle on Samba, in order to read or write data in the session.
Full Vigil@nce bulletin... (Free trial)

This threat impacts software or systems such as iOS by Apple, iPhone, Mac OS X, Debian, Fedora, openSUSE Leap, Samba, SLES, Synology DSM, Synology DS***, Synology RS***, Ubuntu.

Our Vigil@nce team determined that the severity of this computer threat is medium.

The trust level is of type confirmed by the editor, with an origin of intranet client.

An attacker with a expert ability can exploit this cybersecurity bulletin.

Solutions for this threat

Samba: version 4.10.3.
The version 4.10.3 is fixed:
  https://download.samba.org/pub/samba/stable/

Samba: version 4.9.8.
The version 4.9.8 is fixed:
  https://download.samba.org/pub/samba/stable/

Samba: version 4.8.12.
The version 4.8.12 is fixed:
  https://download.samba.org/pub/samba/stable/

Apple iOS: version 12.4.
The version 12.4 is fixed:
  https://support.apple.com/

Apple macOS: versions 10.12.6-2019-004, 10.13.6-2019-004 and 10.14.6.
Versions 10.12.6-2019-High, 10.13.6-2019-High and 10.14.6 are fixed:
  https://support.apple.com/

Debian 9: new heimdal packages.
New packages are available:
  Debian 9: heimdal 7.1.0+dfsg-13+deb9u3

Debian: new samba packages.
New packages are available:
  Debian 9: samba 2:4.5.16+dfsg-1+deb9u2
  Debian 8: samba 2:4.2.14+dfsg-0+deb8u13

Fedora: new samba packages.
New packages are available:
  Fedora 30: samba 4.10.3-0.fc30
  Fedora 29: samba 4.9.8-0.fc29

openSUSE Leap: new libheimdal packages.
New packages are available:
  openSUSE Leap 42.3: libheimdal 7.7.0-12.1
  openSUSE Leap 15.0: libheimdal 7.7.0-lp150.2.3.1
  openSUSE Leap 15.1: libheimdal 7.7.0-lp151.3.3.1

SUSE LE 15: new libheimdal packages.
New packages are available:
  SUSE LE 15 RTM-SP1: libheimdal 7.7.0-bp150.2.3.1

SUSE LE 15 SP1: new libheimdal packages.
New packages are available:
  SUSE LE 15 SP1: libheimdal 7.7.0-bp151.4.3.1

Synology DSM Directory Server: version 6.2.2-24922-1.
The version 6.2.2-24922-1 is fixed:
  https://www.synology.com/

Synology DS/RS: version 6.2.2-24922-1.
The version 6.2.2-24922-1 is fixed:
  https://www.synology.com/

Ubuntu: new samba packages.
New packages are available:
  Ubuntu 19.04: samba 2:4.10.0+dfsg-0ubuntu2.1
  Ubuntu 18.10: samba 2:4.8.4+dfsg-2ubuntu2.4
  Ubuntu 18.04 LTS: samba 2:4.7.6+dfsg~ubuntu-0ubuntu2.11
  Ubuntu 16.04 LTS: samba 2:4.3.11+dfsg-0ubuntu0.16.04.21
  Ubuntu 14.04 ESM: samba 2:4.3.11+dfsg-0ubuntu0.14.04.20+esm1
  Ubuntu 12.04 ESM: samba 2:3.6.25-0ubuntu0.12.04.18
  Ubuntu 14.04 ESM: samba 2:4.3.11+dfsg-0ubuntu0.14.04.20+esm2
Full Vigil@nce bulletin... (Free trial)

Computer vulnerabilities tracking service

Vigil@nce provides software vulnerability analysis. The Vigil@nce computer vulnerability tracking service alerts your teams of vulnerabilities or threats impacting your information system. The Vigil@nce team tracks computer vulnerabilities impacting systems and applications. Each administrator can customize the list of products for which he wants to receive vulnerability alerts.