From owner-freebsd-security@freebsd.org Tue May 30 16:56:05 2017 Return-Path: Delivered-To: freebsd-security@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 8B998B88355 for ; Tue, 30 May 2017 16:56:05 +0000 (UTC) (envelope-from ohartmann@walstatt.org) Received: from mout.gmx.net (mout.gmx.net [212.227.17.20]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "mout.gmx.net", Issuer "TeleSec ServerPass DE-2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id E7BC76F738; Tue, 30 May 2017 16:56:04 +0000 (UTC) (envelope-from ohartmann@walstatt.org) Received: from thor.intern.walstatt.dynvpn.de ([78.52.137.20]) by mail.gmx.com (mrgmx102 [212.227.17.168]) with ESMTPSA (Nemesis) id 0MW9TR-1dQX9d3I1B-00XOKL; Tue, 30 May 2017 18:56:00 +0200 Date: Tue, 30 May 2017 18:55:59 +0200 From: "O. Hartmann" To: Dimitry Andric Cc: freebsd-security@freebsd.org Subject: Re: Samba CVE-2017-7494 and SMB implementation of FreeBSD 10 through 12 Message-ID: <20170530185559.2b94ca1b@thor.intern.walstatt.dynvpn.de> In-Reply-To: References: Organization: WALSTATT User-Agent: OutScare 3.1415926 X-Operating-System: ImNotAnOperatingSystem 3.141592527 MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha512; boundary="Sig_/iHP7SO0wt39=S6dIEnn8.v3"; protocol="application/pgp-signature" X-Provags-ID: V03:K0:cVjMtfTRkhqWBZws04yJEIsLEArO8/1A2ZIcfAPWANI0kaet1Yb XesOyv4ABZuIFkxAKLlDkuMPyIVi2uKyofU27PTuvooaYSFuy9Iyd9Gzk+LK1Q9iKjbQgcx as1anx3azR7V46xjFj4EI7qlRpAl31Q8SEtAzneWWfrNcG8ApsBtvtE7r9J4sIvvONHwxU8 8+s82L5zS8zveY2tSJVfw== X-UI-Out-Filterresults: notjunk:1;V01:K0:56YvnOjqD60=:nDB0rphe5K24ZTcJ97W2iL ymEHZKmlErckwfDqkbVdj9eHieAyX2DvBB/pSn+LAw4l4kPnwkTJoBImmsQh++qOy5gOnBw1s TUGBDhYIMQ1qvXwtNnDSkF/zhT0nOhCHnGecbzDb+6XJzkr9BlbuZZPUFxi5zD72mUsm5+W3y OqFWE79p6uXgaqbtIbFlXzPeWcrQRe6lipwHANCPjQN096wPw9cd+KS5/kUK5qzSsEy+zKfAX SLdl8ZMUS5GhlofjH1AWPLqCNxOJxFAL4Ut16iQIKaTQ/S8+peju7G0VMXkTN2xa3c7jIgL16 k7frVJk8wBq7+YQa6tun9NNPhsU2pJD7ublXHZrqbmB2oo71j0BPn9AJ+eJmLRJERfVfbESQG 5tqOW5lN6sn4N5FG2BoCLVe/4cUXUSwuI/Cx7vhWkBD0RpOH5i84bd3uWHFHf9J8kiaMcw/tZ AngZHgIcvSkBz7X2RGHffzeVVhYlfykhBWUuepHdCWVQCMHHSOE+q57NEH/Ob4Uz590e3AGRZ tlK3oyO+N6IPbBydgIcY/lrwgkDmX6iLIn6/Fn0yDTF4lIkcjZrN3G03aK2k5toOHtnwj6Msi 27to0/wJbrDpQdFce2GLoNanVSEXuEBx3ODZNdM6GTFZnZWdeR9ESJfQtzUyv0jj6uaplX7KY BWVCQoDj3T6LRJV/m2sCKhkPcSSS1I4tQBWKe5o7z71jvUp5T7ynDvkWPnekvf5KkFz22odcd ln/GrubqdBY1tIkfMF/IGvucQFvf+bY4JArWDpGWLckY0jgnAywN2BBhZTw= X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 30 May 2017 16:56:05 -0000 --Sig_/iHP7SO0wt39=S6dIEnn8.v3 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable Am Mon, 29 May 2017 23:47:46 +0200 Dimitry Andric schrieb: > On 29 May 2017, at 18:53, Darko Gavrilovic wrote: > >=20 > > Hello, does anyone know or able to confirm if Samba CVE-2017-7494 > > affects Samba 3.6.25 on Freebsd 9.x? > >=20 > > https://lists.samba.org/archive/samba-announce/2017/000406.html =20 >=20 > The advisory very clearly says "all versions of Samba from 3.5.0 > onwards", so yes. In addition, the 3.x series is dead, and completely > unsupported. It is probably wise to upgrade, for example to 4.6.4. >=20 > -Dimitry >=20 I'm just curious and to have an answere at hand for my superiors: FreeBSD has a SMB implementation we uitlise with FreeBSD 10.3 and 11.0. Is = FreeBSD's implementation somehow affected by the bug revealed in SAMBA >=3D 3.6.25? Sorry for this "stupid" question, but I need the answere for the records ;-) Kind regards, Oliver --=20 O. Hartmann Ich widerspreche der Nutzung oder =C3=9Cbermittlung meiner Daten f=C3=BCr Werbezwecke oder f=C3=BCr die Markt- oder Meinungsforschung (=C2=A7 28 Abs.= 4 BDSG). --Sig_/iHP7SO0wt39=S6dIEnn8.v3 Content-Type: application/pgp-signature Content-Description: OpenPGP digital signature -----BEGIN PGP SIGNATURE----- iLUEARMKAB0WIQQZVZMzAtwC2T/86TrS528fyFhYlAUCWS2kHwAKCRDS528fyFhY lDdTAgCcUsMSl+b9fQsNDYh5yWOalegvqcQZ7/1Tq0fEF9fZAgelyN46mfedTwEb f4Uj+4+RB2tadAPcZr3ySSWpU4PoAf0XJyxBxUqNklfgonxA9p90fiCqkb5HgQcE 2+FBXq1mhBz2hCi9lXa0J+xhYq/8W4LYMR6+4lDpUpO/IY2/MI+z =t7AJ -----END PGP SIGNATURE----- --Sig_/iHP7SO0wt39=S6dIEnn8.v3--