csaf_redhat - rhsa-2015

rhsa-2015_0257

Vulnerability from csaf_redhat

Published

2015-02-23 11:46

Modified

2024-11-22 08:54

Summary

Red Hat Security Advisory: samba security update

Notes

Topic

Updated samba packages that fix one security issue are now available for Red Hat Storage 2.1. Red Hat Product Security has rated this update as having Critical security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section.

Details

Samba is an open-source implementation of the Server Message Block (SMB) or Common Internet File System (CIFS) protocol, which allows PC-compatible machines to share files, printers, and other information. An uninitialized pointer use flaw was found in the Samba daemon (smbd). A malicious Samba client could send specially crafted netlogon packets that, when processed by smbd, could potentially lead to arbitrary code execution with the privileges of the user running smbd (by default, the root user). (CVE-2015-0240) For additional information about this flaw, see the Knowledgebase article at https://access.redhat.com/articles/1346913 Red Hat would like to thank the Samba project for reporting this issue. Upstream acknowledges Richard van Eeden of Microsoft Vulnerability Research as the original reporter of this issue. All Samba users are advised to upgrade to these updated packages, which contain a backported patch to correct this issue. After installing this update, the smb service will be restarted automatically.

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Critical"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated samba packages that fix one security issue are now available for\nRed Hat Storage 2.1.\n\nRed Hat Product Security has rated this update as having Critical security\nimpact. A Common Vulnerability Scoring System (CVSS) base score, which\ngives a detailed severity rating, is available from the CVE link in the\nReferences section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Samba is an open-source implementation of the Server Message Block (SMB) or\nCommon Internet File System (CIFS) protocol, which allows PC-compatible\nmachines to share files, printers, and other information.\n\nAn uninitialized pointer use flaw was found in the Samba daemon (smbd).\nA malicious Samba client could send specially crafted netlogon packets\nthat, when processed by smbd, could potentially lead to arbitrary code\nexecution with the privileges of the user running smbd (by default, the\nroot user). (CVE-2015-0240)\n\nFor additional information about this flaw, see the Knowledgebase article\nat https://access.redhat.com/articles/1346913\n\nRed Hat would like to thank the Samba project for reporting this issue.\nUpstream acknowledges Richard van Eeden of Microsoft Vulnerability Research\nas the original reporter of this issue.\n\nAll Samba users are advised to upgrade to these updated packages, which\ncontain a backported patch to correct this issue. After installing this\nupdate, the smb service will be restarted automatically.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2015:0257",
        "url": "https://access.redhat.com/errata/RHSA-2015:0257"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#critical",
        "url": "https://access.redhat.com/security/updates/classification/#critical"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/articles/1346913",
        "url": "https://access.redhat.com/articles/1346913"
      },
      {
        "category": "external",
        "summary": "1191325",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1191325"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_0257.json"
      }
    ],
    "title": "Red Hat Security Advisory: samba security update",
    "tracking": {
      "current_release_date": "2024-11-22T08:54:07+00:00",
      "generator": {
        "date": "2024-11-22T08:54:07+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2015:0257",
      "initial_release_date": "2015-02-23T11:46:22+00:00",
      "revision_history": [
        {
          "date": "2015-02-23T11:46:22+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2015-02-23T11:46:22+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-22T08:54:07+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Storage Server 2.1",
                "product": {
                  "name": "Red Hat Storage Server 2.1",
                  "product_id": "6Server-RHS-6.4.z",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:storage:2.1:server:el6"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Gluster Storage"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "samba-winbind-devel-0:3.6.9-167.10.3.el6rhs.x86_64",
                "product": {
                  "name": "samba-winbind-devel-0:3.6.9-167.10.3.el6rhs.x86_64",
                  "product_id": "samba-winbind-devel-0:3.6.9-167.10.3.el6rhs.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/samba-winbind-devel@3.6.9-167.10.3.el6rhs?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "samba-swat-0:3.6.9-167.10.3.el6rhs.x86_64",
                "product": {
                  "name": "samba-swat-0:3.6.9-167.10.3.el6rhs.x86_64",
                  "product_id": "samba-swat-0:3.6.9-167.10.3.el6rhs.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/samba-swat@3.6.9-167.10.3.el6rhs?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "samba-common-0:3.6.9-167.10.3.el6rhs.x86_64",
                "product": {
                  "name": "samba-common-0:3.6.9-167.10.3.el6rhs.x86_64",
                  "product_id": "samba-common-0:3.6.9-167.10.3.el6rhs.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/samba-common@3.6.9-167.10.3.el6rhs?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "libsmbclient-devel-0:3.6.9-167.10.3.el6rhs.x86_64",
                "product": {
                  "name": "libsmbclient-devel-0:3.6.9-167.10.3.el6rhs.x86_64",
                  "product_id": "libsmbclient-devel-0:3.6.9-167.10.3.el6rhs.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/libsmbclient-devel@3.6.9-167.10.3.el6rhs?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "libsmbclient-0:3.6.9-167.10.3.el6rhs.x86_64",
                "product": {
                  "name": "libsmbclient-0:3.6.9-167.10.3.el6rhs.x86_64",
                  "product_id": "libsmbclient-0:3.6.9-167.10.3.el6rhs.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/libsmbclient@3.6.9-167.10.3.el6rhs?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "samba-doc-0:3.6.9-167.10.3.el6rhs.x86_64",
                "product": {
                  "name": "samba-doc-0:3.6.9-167.10.3.el6rhs.x86_64",
                  "product_id": "samba-doc-0:3.6.9-167.10.3.el6rhs.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/samba-doc@3.6.9-167.10.3.el6rhs?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "samba-domainjoin-gui-0:3.6.9-167.10.3.el6rhs.x86_64",
                "product": {
                  "name": "samba-domainjoin-gui-0:3.6.9-167.10.3.el6rhs.x86_64",
                  "product_id": "samba-domainjoin-gui-0:3.6.9-167.10.3.el6rhs.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/samba-domainjoin-gui@3.6.9-167.10.3.el6rhs?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "samba-winbind-0:3.6.9-167.10.3.el6rhs.x86_64",
                "product": {
                  "name": "samba-winbind-0:3.6.9-167.10.3.el6rhs.x86_64",
                  "product_id": "samba-winbind-0:3.6.9-167.10.3.el6rhs.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/samba-winbind@3.6.9-167.10.3.el6rhs?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "samba-debuginfo-0:3.6.9-167.10.3.el6rhs.x86_64",
                "product": {
                  "name": "samba-debuginfo-0:3.6.9-167.10.3.el6rhs.x86_64",
                  "product_id": "samba-debuginfo-0:3.6.9-167.10.3.el6rhs.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/samba-debuginfo@3.6.9-167.10.3.el6rhs?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "samba-winbind-krb5-locator-0:3.6.9-167.10.3.el6rhs.x86_64",
                "product": {
                  "name": "samba-winbind-krb5-locator-0:3.6.9-167.10.3.el6rhs.x86_64",
                  "product_id": "samba-winbind-krb5-locator-0:3.6.9-167.10.3.el6rhs.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/samba-winbind-krb5-locator@3.6.9-167.10.3.el6rhs?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "samba-0:3.6.9-167.10.3.el6rhs.x86_64",
                "product": {
                  "name": "samba-0:3.6.9-167.10.3.el6rhs.x86_64",
                  "product_id": "samba-0:3.6.9-167.10.3.el6rhs.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/samba@3.6.9-167.10.3.el6rhs?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "samba-client-0:3.6.9-167.10.3.el6rhs.x86_64",
                "product": {
                  "name": "samba-client-0:3.6.9-167.10.3.el6rhs.x86_64",
                  "product_id": "samba-client-0:3.6.9-167.10.3.el6rhs.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/samba-client@3.6.9-167.10.3.el6rhs?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "samba-glusterfs-0:3.6.9-167.10.3.el6rhs.x86_64",
                "product": {
                  "name": "samba-glusterfs-0:3.6.9-167.10.3.el6rhs.x86_64",
                  "product_id": "samba-glusterfs-0:3.6.9-167.10.3.el6rhs.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/samba-glusterfs@3.6.9-167.10.3.el6rhs?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "samba-winbind-clients-0:3.6.9-167.10.3.el6rhs.x86_64",
                "product": {
                  "name": "samba-winbind-clients-0:3.6.9-167.10.3.el6rhs.x86_64",
                  "product_id": "samba-winbind-clients-0:3.6.9-167.10.3.el6rhs.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/samba-winbind-clients@3.6.9-167.10.3.el6rhs?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "samba-0:3.6.9-167.10.3.el6rhs.src",
                "product": {
                  "name": "samba-0:3.6.9-167.10.3.el6rhs.src",
                  "product_id": "samba-0:3.6.9-167.10.3.el6rhs.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/samba@3.6.9-167.10.3.el6rhs?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsmbclient-0:3.6.9-167.10.3.el6rhs.x86_64 as a component of Red Hat Storage Server 2.1",
          "product_id": "6Server-RHS-6.4.z:libsmbclient-0:3.6.9-167.10.3.el6rhs.x86_64"
        },
        "product_reference": "libsmbclient-0:3.6.9-167.10.3.el6rhs.x86_64",
        "relates_to_product_reference": "6Server-RHS-6.4.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsmbclient-devel-0:3.6.9-167.10.3.el6rhs.x86_64 as a component of Red Hat Storage Server 2.1",
          "product_id": "6Server-RHS-6.4.z:libsmbclient-devel-0:3.6.9-167.10.3.el6rhs.x86_64"
        },
        "product_reference": "libsmbclient-devel-0:3.6.9-167.10.3.el6rhs.x86_64",
        "relates_to_product_reference": "6Server-RHS-6.4.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "samba-0:3.6.9-167.10.3.el6rhs.src as a component of Red Hat Storage Server 2.1",
          "product_id": "6Server-RHS-6.4.z:samba-0:3.6.9-167.10.3.el6rhs.src"
        },
        "product_reference": "samba-0:3.6.9-167.10.3.el6rhs.src",
        "relates_to_product_reference": "6Server-RHS-6.4.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "samba-0:3.6.9-167.10.3.el6rhs.x86_64 as a component of Red Hat Storage Server 2.1",
          "product_id": "6Server-RHS-6.4.z:samba-0:3.6.9-167.10.3.el6rhs.x86_64"
        },
        "product_reference": "samba-0:3.6.9-167.10.3.el6rhs.x86_64",
        "relates_to_product_reference": "6Server-RHS-6.4.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "samba-client-0:3.6.9-167.10.3.el6rhs.x86_64 as a component of Red Hat Storage Server 2.1",
          "product_id": "6Server-RHS-6.4.z:samba-client-0:3.6.9-167.10.3.el6rhs.x86_64"
        },
        "product_reference": "samba-client-0:3.6.9-167.10.3.el6rhs.x86_64",
        "relates_to_product_reference": "6Server-RHS-6.4.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "samba-common-0:3.6.9-167.10.3.el6rhs.x86_64 as a component of Red Hat Storage Server 2.1",
          "product_id": "6Server-RHS-6.4.z:samba-common-0:3.6.9-167.10.3.el6rhs.x86_64"
        },
        "product_reference": "samba-common-0:3.6.9-167.10.3.el6rhs.x86_64",
        "relates_to_product_reference": "6Server-RHS-6.4.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "samba-debuginfo-0:3.6.9-167.10.3.el6rhs.x86_64 as a component of Red Hat Storage Server 2.1",
          "product_id": "6Server-RHS-6.4.z:samba-debuginfo-0:3.6.9-167.10.3.el6rhs.x86_64"
        },
        "product_reference": "samba-debuginfo-0:3.6.9-167.10.3.el6rhs.x86_64",
        "relates_to_product_reference": "6Server-RHS-6.4.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "samba-doc-0:3.6.9-167.10.3.el6rhs.x86_64 as a component of Red Hat Storage Server 2.1",
          "product_id": "6Server-RHS-6.4.z:samba-doc-0:3.6.9-167.10.3.el6rhs.x86_64"
        },
        "product_reference": "samba-doc-0:3.6.9-167.10.3.el6rhs.x86_64",
        "relates_to_product_reference": "6Server-RHS-6.4.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "samba-domainjoin-gui-0:3.6.9-167.10.3.el6rhs.x86_64 as a component of Red Hat Storage Server 2.1",
          "product_id": "6Server-RHS-6.4.z:samba-domainjoin-gui-0:3.6.9-167.10.3.el6rhs.x86_64"
        },
        "product_reference": "samba-domainjoin-gui-0:3.6.9-167.10.3.el6rhs.x86_64",
        "relates_to_product_reference": "6Server-RHS-6.4.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "samba-glusterfs-0:3.6.9-167.10.3.el6rhs.x86_64 as a component of Red Hat Storage Server 2.1",
          "product_id": "6Server-RHS-6.4.z:samba-glusterfs-0:3.6.9-167.10.3.el6rhs.x86_64"
        },
        "product_reference": "samba-glusterfs-0:3.6.9-167.10.3.el6rhs.x86_64",
        "relates_to_product_reference": "6Server-RHS-6.4.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "samba-swat-0:3.6.9-167.10.3.el6rhs.x86_64 as a component of Red Hat Storage Server 2.1",
          "product_id": "6Server-RHS-6.4.z:samba-swat-0:3.6.9-167.10.3.el6rhs.x86_64"
        },
        "product_reference": "samba-swat-0:3.6.9-167.10.3.el6rhs.x86_64",
        "relates_to_product_reference": "6Server-RHS-6.4.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "samba-winbind-0:3.6.9-167.10.3.el6rhs.x86_64 as a component of Red Hat Storage Server 2.1",
          "product_id": "6Server-RHS-6.4.z:samba-winbind-0:3.6.9-167.10.3.el6rhs.x86_64"
        },
        "product_reference": "samba-winbind-0:3.6.9-167.10.3.el6rhs.x86_64",
        "relates_to_product_reference": "6Server-RHS-6.4.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "samba-winbind-clients-0:3.6.9-167.10.3.el6rhs.x86_64 as a component of Red Hat Storage Server 2.1",
          "product_id": "6Server-RHS-6.4.z:samba-winbind-clients-0:3.6.9-167.10.3.el6rhs.x86_64"
        },
        "product_reference": "samba-winbind-clients-0:3.6.9-167.10.3.el6rhs.x86_64",
        "relates_to_product_reference": "6Server-RHS-6.4.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "samba-winbind-devel-0:3.6.9-167.10.3.el6rhs.x86_64 as a component of Red Hat Storage Server 2.1",
          "product_id": "6Server-RHS-6.4.z:samba-winbind-devel-0:3.6.9-167.10.3.el6rhs.x86_64"
        },
        "product_reference": "samba-winbind-devel-0:3.6.9-167.10.3.el6rhs.x86_64",
        "relates_to_product_reference": "6Server-RHS-6.4.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "samba-winbind-krb5-locator-0:3.6.9-167.10.3.el6rhs.x86_64 as a component of Red Hat Storage Server 2.1",
          "product_id": "6Server-RHS-6.4.z:samba-winbind-krb5-locator-0:3.6.9-167.10.3.el6rhs.x86_64"
        },
        "product_reference": "samba-winbind-krb5-locator-0:3.6.9-167.10.3.el6rhs.x86_64",
        "relates_to_product_reference": "6Server-RHS-6.4.z"
      }
    ]
  },
  "vulnerabilities": [
    {
      "acknowledgments": [
        {
          "names": [
            "Samba project"
          ]
        },
        {
          "names": [
            "Richard van Eeden"
          ],
          "organization": "Microsoft Vulnerability Research",
          "summary": "Acknowledged by upstream."
        }
      ],
      "cve": "CVE-2015-0240",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2015-02-11T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1191325"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "An uninitialized pointer use flaw was found in the Samba daemon (smbd). A malicious Samba client could send specially crafted netlogon packets that, when processed by smbd, could potentially lead to arbitrary code execution with the privileges of the user running smbd (by default, the root user).",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "samba: talloc free on uninitialized stack pointer in netlogon server could lead to remote-code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue does not affect the version of samba package as shipped with Red Hat Enterprise Linux 4 and 5. It does affect the version of samba as shipped with Red Hat Enterprise Linux 6 and 7, as well as the version of samba3x shipped with Red Hat Enterprise Linux 5 and the version of samba4 as shipped with Red Hat Enterprise Linux 6.\n\nRed Hat Product Security has determined that this vulnerability has Important impact on Red Hat Enterprise Linux 7 because the Samba version shipped in this version of the operating system only executes the vulnerable code after a memory allocation failure, making it more difficult to exploit this flaw.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-RHS-6.4.z:libsmbclient-0:3.6.9-167.10.3.el6rhs.x86_64",
          "6Server-RHS-6.4.z:libsmbclient-devel-0:3.6.9-167.10.3.el6rhs.x86_64",
          "6Server-RHS-6.4.z:samba-0:3.6.9-167.10.3.el6rhs.src",
          "6Server-RHS-6.4.z:samba-0:3.6.9-167.10.3.el6rhs.x86_64",
          "6Server-RHS-6.4.z:samba-client-0:3.6.9-167.10.3.el6rhs.x86_64",
          "6Server-RHS-6.4.z:samba-common-0:3.6.9-167.10.3.el6rhs.x86_64",
          "6Server-RHS-6.4.z:samba-debuginfo-0:3.6.9-167.10.3.el6rhs.x86_64",
          "6Server-RHS-6.4.z:samba-doc-0:3.6.9-167.10.3.el6rhs.x86_64",
          "6Server-RHS-6.4.z:samba-domainjoin-gui-0:3.6.9-167.10.3.el6rhs.x86_64",
          "6Server-RHS-6.4.z:samba-glusterfs-0:3.6.9-167.10.3.el6rhs.x86_64",
          "6Server-RHS-6.4.z:samba-swat-0:3.6.9-167.10.3.el6rhs.x86_64",
          "6Server-RHS-6.4.z:samba-winbind-0:3.6.9-167.10.3.el6rhs.x86_64",
          "6Server-RHS-6.4.z:samba-winbind-clients-0:3.6.9-167.10.3.el6rhs.x86_64",
          "6Server-RHS-6.4.z:samba-winbind-devel-0:3.6.9-167.10.3.el6rhs.x86_64",
          "6Server-RHS-6.4.z:samba-winbind-krb5-locator-0:3.6.9-167.10.3.el6rhs.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2015-0240"
        },
        {
          "category": "external",
          "summary": "RHBZ#1191325",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1191325"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0240",
          "url": "https://www.cve.org/CVERecord?id=CVE-2015-0240"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0240",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0240"
        },
        {
          "category": "external",
          "summary": "https://access.redhat.com/articles/1346913",
          "url": "https://access.redhat.com/articles/1346913"
        },
        {
          "category": "external",
          "summary": "https://securityblog.redhat.com/2015/02/23/samba-vulnerability-cve-2015-0240/",
          "url": "https://securityblog.redhat.com/2015/02/23/samba-vulnerability-cve-2015-0240/"
        },
        {
          "category": "external",
          "summary": "https://www.samba.org/samba/security/CVE-2015-0240",
          "url": "https://www.samba.org/samba/security/CVE-2015-0240"
        }
      ],
      "release_date": "2015-02-23T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-02-23T11:46:22+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "6Server-RHS-6.4.z:libsmbclient-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:libsmbclient-devel-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:samba-0:3.6.9-167.10.3.el6rhs.src",
            "6Server-RHS-6.4.z:samba-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:samba-client-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:samba-common-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:samba-debuginfo-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:samba-doc-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:samba-domainjoin-gui-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:samba-glusterfs-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:samba-swat-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:samba-winbind-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:samba-winbind-clients-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:samba-winbind-devel-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:samba-winbind-krb5-locator-0:3.6.9-167.10.3.el6rhs.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:0257"
        },
        {
          "category": "workaround",
          "details": "On Samba versions 4.0.0 and above, add the line:\n\nrpc_server:netlogon=disabled\n\nto the [global] section of your smb.conf. For Samba versions 3.6.x and\nearlier, this workaround is not available.",
          "product_ids": [
            "6Server-RHS-6.4.z:libsmbclient-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:libsmbclient-devel-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:samba-0:3.6.9-167.10.3.el6rhs.src",
            "6Server-RHS-6.4.z:samba-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:samba-client-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:samba-common-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:samba-debuginfo-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:samba-doc-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:samba-domainjoin-gui-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:samba-glusterfs-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:samba-swat-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:samba-winbind-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:samba-winbind-clients-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:samba-winbind-devel-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:samba-winbind-krb5-locator-0:3.6.9-167.10.3.el6rhs.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "ADJACENT_NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.9,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:A/AC:M/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "products": [
            "6Server-RHS-6.4.z:libsmbclient-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:libsmbclient-devel-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:samba-0:3.6.9-167.10.3.el6rhs.src",
            "6Server-RHS-6.4.z:samba-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:samba-client-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:samba-common-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:samba-debuginfo-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:samba-doc-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:samba-domainjoin-gui-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:samba-glusterfs-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:samba-swat-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:samba-winbind-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:samba-winbind-clients-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:samba-winbind-devel-0:3.6.9-167.10.3.el6rhs.x86_64",
            "6Server-RHS-6.4.z:samba-winbind-krb5-locator-0:3.6.9-167.10.3.el6rhs.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Critical"
        }
      ],
      "title": "samba: talloc free on uninitialized stack pointer in netlogon server could lead to remote-code execution"
    }
  ]
}

cve-2015-0240

Vulnerability from cvelistv5

Published

2015-02-24 01:00

Modified

2024-08-06 04:03

Severity ?

Summary

The Netlogon server implementation in smbd in Samba 3.5.x and 3.6.x before 3.6.25, 4.0.x before 4.0.25, 4.1.x before 4.1.17, and 4.2.x before 4.2.0rc5 performs a free operation on an uninitialized stack pointer, which allows remote attackers to execute arbitrary code via crafted Netlogon packets that use the ServerPasswordSet RPC API, as demonstrated by packets reaching the _netr_ServerPasswordSet function in rpc_server/netlogon/srv_netlog_nt.c.

References

▼	URL	Tags
	http://marc.info/?l=bugtraq&m=143039217203031&w=2	vendor-advisory, x_refsource_HP
	http://rhn.redhat.com/errata/RHSA-2015-0257.html	vendor-advisory, x_refsource_REDHAT
	http://rhn.redhat.com/errata/RHSA-2015-0254.html	vendor-advisory, x_refsource_REDHAT
	https://securityblog.redhat.com/2015/02/23/samba-vulnerability-cve-2015-0240/	x_refsource_CONFIRM
	http://advisories.mageia.org/MGASA-2015-0084.html	x_refsource_CONFIRM
	http://www.slackware.com/security/viewer.php?l=slackware-security&y=2015&m=slackware-security.360345	vendor-advisory, x_refsource_SLACKWARE
	https://www.exploit-db.com/exploits/36741/	exploit, x_refsource_EXPLOIT-DB
	http://rhn.redhat.com/errata/RHSA-2015-0250.html	vendor-advisory, x_refsource_REDHAT
	https://support.lenovo.com/product_security/samba_remote_vuln	x_refsource_CONFIRM
	http://marc.info/?l=bugtraq&m=143039217203031&w=2	vendor-advisory, x_refsource_HP
	http://www.ubuntu.com/usn/USN-2508-1	vendor-advisory, x_refsource_UBUNTU
	http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00042.html	vendor-advisory, x_refsource_SUSE
	http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00035.html	vendor-advisory, x_refsource_SUSE
	http://rhn.redhat.com/errata/RHSA-2015-0253.html	vendor-advisory, x_refsource_REDHAT
	https://www.samba.org/samba/security/CVE-2015-0240	x_refsource_CONFIRM
	http://www.securityfocus.com/bid/72711	vdb-entry, x_refsource_BID
	http://rhn.redhat.com/errata/RHSA-2015-0249.html	vendor-advisory, x_refsource_REDHAT
	http://rhn.redhat.com/errata/RHSA-2015-0251.html	vendor-advisory, x_refsource_REDHAT
	http://security.gentoo.org/glsa/glsa-201502-15.xml	vendor-advisory, x_refsource_GENTOO
	http://www.debian.org/security/2015/dsa-3171	vendor-advisory, x_refsource_DEBIAN
	http://www.securitytracker.com/id/1031783	vdb-entry, x_refsource_SECTRACK
	http://rhn.redhat.com/errata/RHSA-2015-0252.html	vendor-advisory, x_refsource_REDHAT
	https://bugzilla.redhat.com/show_bug.cgi?id=1191325	x_refsource_CONFIRM
	http://www.mandriva.com/security/advisories?name=MDVSA-2015:082	vendor-advisory, x_refsource_MANDRIVA
	http://marc.info/?l=bugtraq&m=142722696102151&w=2	vendor-advisory, x_refsource_HP
	http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00047.html	vendor-advisory, x_refsource_SUSE
	https://support.lenovo.com/us/en/product_security/samba_remote_vuln	x_refsource_CONFIRM
	http://www.mandriva.com/security/advisories?name=MDVSA-2015:081	vendor-advisory, x_refsource_MANDRIVA
	http://rhn.redhat.com/errata/RHSA-2015-0255.html	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/articles/1346913	x_refsource_CONFIRM
	http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html	x_refsource_CONFIRM
	http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00048.html	vendor-advisory, x_refsource_SUSE
	http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00031.html	vendor-advisory, x_refsource_SUSE
	http://rhn.redhat.com/errata/RHSA-2015-0256.html	vendor-advisory, x_refsource_REDHAT
	http://marc.info/?l=bugtraq&m=142722696102151&w=2	vendor-advisory, x_refsource_HP
	http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00030.html	vendor-advisory, x_refsource_SUSE
	http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00028.html	vendor-advisory, x_refsource_SUSE

Impacted products

▼	Vendor	Product
	n/a	n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T04:03:10.408Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "HPSBUX03320",
            "tags": [
              "vendor-advisory",
              "x_refsource_HP",
              "x_transferred"
            ],
            "url": "http://marc.info/?l=bugtraq\u0026m=143039217203031\u0026w=2"
          },
          {
            "name": "RHSA-2015:0257",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2015-0257.html"
          },
          {
            "name": "RHSA-2015:0254",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2015-0254.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://securityblog.redhat.com/2015/02/23/samba-vulnerability-cve-2015-0240/"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://advisories.mageia.org/MGASA-2015-0084.html"
          },
          {
            "name": "SSA:2015-064-01",
            "tags": [
              "vendor-advisory",
              "x_refsource_SLACKWARE",
              "x_transferred"
            ],
            "url": "http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2015\u0026m=slackware-security.360345"
          },
          {
            "name": "36741",
            "tags": [
              "exploit",
              "x_refsource_EXPLOIT-DB",
              "x_transferred"
            ],
            "url": "https://www.exploit-db.com/exploits/36741/"
          },
          {
            "name": "RHSA-2015:0250",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2015-0250.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.lenovo.com/product_security/samba_remote_vuln"
          },
          {
            "name": "SSRT101952",
            "tags": [
              "vendor-advisory",
              "x_refsource_HP",
              "x_transferred"
            ],
            "url": "http://marc.info/?l=bugtraq\u0026m=143039217203031\u0026w=2"
          },
          {
            "name": "USN-2508-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "http://www.ubuntu.com/usn/USN-2508-1"
          },
          {
            "name": "openSUSE-SU-2016:1064",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00042.html"
          },
          {
            "name": "SUSE-SU-2015:0386",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00035.html"
          },
          {
            "name": "RHSA-2015:0253",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2015-0253.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.samba.org/samba/security/CVE-2015-0240"
          },
          {
            "name": "72711",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/72711"
          },
          {
            "name": "RHSA-2015:0249",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2015-0249.html"
          },
          {
            "name": "RHSA-2015:0251",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2015-0251.html"
          },
          {
            "name": "GLSA-201502-15",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "http://security.gentoo.org/glsa/glsa-201502-15.xml"
          },
          {
            "name": "DSA-3171",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2015/dsa-3171"
          },
          {
            "name": "1031783",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1031783"
          },
          {
            "name": "RHSA-2015:0252",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2015-0252.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1191325"
          },
          {
            "name": "MDVSA-2015:082",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRIVA",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:082"
          },
          {
            "name": "HPSBGN03288",
            "tags": [
              "vendor-advisory",
              "x_refsource_HP",
              "x_transferred"
            ],
            "url": "http://marc.info/?l=bugtraq\u0026m=142722696102151\u0026w=2"
          },
          {
            "name": "openSUSE-SU-2016:1106",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00047.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.lenovo.com/us/en/product_security/samba_remote_vuln"
          },
          {
            "name": "MDVSA-2015:081",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRIVA",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:081"
          },
          {
            "name": "RHSA-2015:0255",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2015-0255.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/articles/1346913"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html"
          },
          {
            "name": "openSUSE-SU-2016:1107",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00048.html"
          },
          {
            "name": "openSUSE-SU-2015:0375",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00031.html"
          },
          {
            "name": "RHSA-2015:0256",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2015-0256.html"
          },
          {
            "name": "SSRT101979",
            "tags": [
              "vendor-advisory",
              "x_refsource_HP",
              "x_transferred"
            ],
            "url": "http://marc.info/?l=bugtraq\u0026m=142722696102151\u0026w=2"
          },
          {
            "name": "SUSE-SU-2015:0371",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00030.html"
          },
          {
            "name": "SUSE-SU-2015:0353",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00028.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2015-02-23T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "The Netlogon server implementation in smbd in Samba 3.5.x and 3.6.x before 3.6.25, 4.0.x before 4.0.25, 4.1.x before 4.1.17, and 4.2.x before 4.2.0rc5 performs a free operation on an uninitialized stack pointer, which allows remote attackers to execute arbitrary code via crafted Netlogon packets that use the ServerPasswordSet RPC API, as demonstrated by packets reaching the _netr_ServerPasswordSet function in rpc_server/netlogon/srv_netlog_nt.c."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2016-12-06T18:57:01",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "HPSBUX03320",
          "tags": [
            "vendor-advisory",
            "x_refsource_HP"
          ],
          "url": "http://marc.info/?l=bugtraq\u0026m=143039217203031\u0026w=2"
        },
        {
          "name": "RHSA-2015:0257",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2015-0257.html"
        },
        {
          "name": "RHSA-2015:0254",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2015-0254.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://securityblog.redhat.com/2015/02/23/samba-vulnerability-cve-2015-0240/"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://advisories.mageia.org/MGASA-2015-0084.html"
        },
        {
          "name": "SSA:2015-064-01",
          "tags": [
            "vendor-advisory",
            "x_refsource_SLACKWARE"
          ],
          "url": "http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2015\u0026m=slackware-security.360345"
        },
        {
          "name": "36741",
          "tags": [
            "exploit",
            "x_refsource_EXPLOIT-DB"
          ],
          "url": "https://www.exploit-db.com/exploits/36741/"
        },
        {
          "name": "RHSA-2015:0250",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2015-0250.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.lenovo.com/product_security/samba_remote_vuln"
        },
        {
          "name": "SSRT101952",
          "tags": [
            "vendor-advisory",
            "x_refsource_HP"
          ],
          "url": "http://marc.info/?l=bugtraq\u0026m=143039217203031\u0026w=2"
        },
        {
          "name": "USN-2508-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "http://www.ubuntu.com/usn/USN-2508-1"
        },
        {
          "name": "openSUSE-SU-2016:1064",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00042.html"
        },
        {
          "name": "SUSE-SU-2015:0386",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00035.html"
        },
        {
          "name": "RHSA-2015:0253",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2015-0253.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.samba.org/samba/security/CVE-2015-0240"
        },
        {
          "name": "72711",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/72711"
        },
        {
          "name": "RHSA-2015:0249",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2015-0249.html"
        },
        {
          "name": "RHSA-2015:0251",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2015-0251.html"
        },
        {
          "name": "GLSA-201502-15",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "http://security.gentoo.org/glsa/glsa-201502-15.xml"
        },
        {
          "name": "DSA-3171",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2015/dsa-3171"
        },
        {
          "name": "1031783",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1031783"
        },
        {
          "name": "RHSA-2015:0252",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2015-0252.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1191325"
        },
        {
          "name": "MDVSA-2015:082",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRIVA"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:082"
        },
        {
          "name": "HPSBGN03288",
          "tags": [
            "vendor-advisory",
            "x_refsource_HP"
          ],
          "url": "http://marc.info/?l=bugtraq\u0026m=142722696102151\u0026w=2"
        },
        {
          "name": "openSUSE-SU-2016:1106",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00047.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.lenovo.com/us/en/product_security/samba_remote_vuln"
        },
        {
          "name": "MDVSA-2015:081",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRIVA"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:081"
        },
        {
          "name": "RHSA-2015:0255",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2015-0255.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://access.redhat.com/articles/1346913"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html"
        },
        {
          "name": "openSUSE-SU-2016:1107",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00048.html"
        },
        {
          "name": "openSUSE-SU-2015:0375",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00031.html"
        },
        {
          "name": "RHSA-2015:0256",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2015-0256.html"
        },
        {
          "name": "SSRT101979",
          "tags": [
            "vendor-advisory",
            "x_refsource_HP"
          ],
          "url": "http://marc.info/?l=bugtraq\u0026m=142722696102151\u0026w=2"
        },
        {
          "name": "SUSE-SU-2015:0371",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00030.html"
        },
        {
          "name": "SUSE-SU-2015:0353",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00028.html"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2015-0240",
    "datePublished": "2015-02-24T01:00:00",
    "dateReserved": "2014-11-18T00:00:00",
    "dateUpdated": "2024-08-06T04:03:10.408Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted