From owner-freebsd-security@freebsd.org  Tue May 30 16:56:05 2017
Return-Path: <owner-freebsd-security@freebsd.org>
Delivered-To: freebsd-security@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 8B998B88355
 for <freebsd-security@mailman.ysv.freebsd.org>;
 Tue, 30 May 2017 16:56:05 +0000 (UTC)
 (envelope-from ohartmann@walstatt.org)
Received: from mout.gmx.net (mout.gmx.net [212.227.17.20])
 (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
 (Client CN "mout.gmx.net", Issuer "TeleSec ServerPass DE-2" (verified OK))
 by mx1.freebsd.org (Postfix) with ESMTPS id E7BC76F738;
 Tue, 30 May 2017 16:56:04 +0000 (UTC)
 (envelope-from ohartmann@walstatt.org)
Received: from thor.intern.walstatt.dynvpn.de ([78.52.137.20]) by mail.gmx.com
 (mrgmx102 [212.227.17.168]) with ESMTPSA (Nemesis) id
 0MW9TR-1dQX9d3I1B-00XOKL; Tue, 30 May 2017 18:56:00 +0200
Date: Tue, 30 May 2017 18:55:59 +0200
From: "O. Hartmann" <ohartmann@walstatt.org>
To: Dimitry Andric <dim@FreeBSD.org>
Cc: freebsd-security@freebsd.org
Subject: Re: Samba CVE-2017-7494 and SMB implementation of FreeBSD 10
 through 12
Message-ID: <20170530185559.2b94ca1b@thor.intern.walstatt.dynvpn.de>
In-Reply-To: <F875D26C-F8DA-438F-AE40-8E7B2F5CDC29@FreeBSD.org>
References: <CAGYSLOcqeqyYgw3BFyoRKO5RcJkmiYFMPT7qps1j-+obL2x==g@mail.gmail.com>
 <F875D26C-F8DA-438F-AE40-8E7B2F5CDC29@FreeBSD.org>
Organization: WALSTATT
User-Agent: OutScare 3.1415926
X-Operating-System: ImNotAnOperatingSystem 3.141592527
MIME-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha512;
 boundary="Sig_/iHP7SO0wt39=S6dIEnn8.v3"; protocol="application/pgp-signature"
X-Provags-ID: V03:K0:cVjMtfTRkhqWBZws04yJEIsLEArO8/1A2ZIcfAPWANI0kaet1Yb
 XesOyv4ABZuIFkxAKLlDkuMPyIVi2uKyofU27PTuvooaYSFuy9Iyd9Gzk+LK1Q9iKjbQgcx
 as1anx3azR7V46xjFj4EI7qlRpAl31Q8SEtAzneWWfrNcG8ApsBtvtE7r9J4sIvvONHwxU8
 8+s82L5zS8zveY2tSJVfw==
X-UI-Out-Filterresults: notjunk:1;V01:K0:56YvnOjqD60=:nDB0rphe5K24ZTcJ97W2iL
 ymEHZKmlErckwfDqkbVdj9eHieAyX2DvBB/pSn+LAw4l4kPnwkTJoBImmsQh++qOy5gOnBw1s
 TUGBDhYIMQ1qvXwtNnDSkF/zhT0nOhCHnGecbzDb+6XJzkr9BlbuZZPUFxi5zD72mUsm5+W3y
 OqFWE79p6uXgaqbtIbFlXzPeWcrQRe6lipwHANCPjQN096wPw9cd+KS5/kUK5qzSsEy+zKfAX
 SLdl8ZMUS5GhlofjH1AWPLqCNxOJxFAL4Ut16iQIKaTQ/S8+peju7G0VMXkTN2xa3c7jIgL16
 k7frVJk8wBq7+YQa6tun9NNPhsU2pJD7ublXHZrqbmB2oo71j0BPn9AJ+eJmLRJERfVfbESQG
 5tqOW5lN6sn4N5FG2BoCLVe/4cUXUSwuI/Cx7vhWkBD0RpOH5i84bd3uWHFHf9J8kiaMcw/tZ
 AngZHgIcvSkBz7X2RGHffzeVVhYlfykhBWUuepHdCWVQCMHHSOE+q57NEH/Ob4Uz590e3AGRZ
 tlK3oyO+N6IPbBydgIcY/lrwgkDmX6iLIn6/Fn0yDTF4lIkcjZrN3G03aK2k5toOHtnwj6Msi
 27to0/wJbrDpQdFce2GLoNanVSEXuEBx3ODZNdM6GTFZnZWdeR9ESJfQtzUyv0jj6uaplX7KY
 BWVCQoDj3T6LRJV/m2sCKhkPcSSS1I4tQBWKe5o7z71jvUp5T7ynDvkWPnekvf5KkFz22odcd
 ln/GrubqdBY1tIkfMF/IGvucQFvf+bY4JArWDpGWLckY0jgnAywN2BBhZTw=
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.23
Precedence: list
List-Id: "Security issues \[members-only posting\]"
 <freebsd-security.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security/>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 30 May 2017 16:56:05 -0000

--Sig_/iHP7SO0wt39=S6dIEnn8.v3
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable

Am Mon, 29 May 2017 23:47:46 +0200
Dimitry Andric <dim@FreeBSD.org> schrieb:

> On 29 May 2017, at 18:53, Darko Gavrilovic <d.gavrilovic@gmail.com> wrote:
> >=20
> > Hello, does anyone know or able to confirm if Samba CVE-2017-7494
> > affects Samba 3.6.25 on Freebsd 9.x?
> >=20
> > https://lists.samba.org/archive/samba-announce/2017/000406.html =20
>=20
> The advisory very clearly says "all versions of Samba from 3.5.0
> onwards", so yes.  In addition, the 3.x series is dead, and completely
> unsupported.  It is probably wise to upgrade, for example to 4.6.4.
>=20
> -Dimitry
>=20

I'm just curious and to have an answere at hand for my superiors:

FreeBSD has a SMB implementation we uitlise with FreeBSD 10.3 and 11.0. Is =
FreeBSD's
implementation somehow affected by the bug revealed in SAMBA >=3D 3.6.25?

Sorry for this "stupid" question, but I need the answere for the records ;-)

Kind regards,

Oliver

--=20
O. Hartmann

Ich widerspreche der Nutzung oder =C3=9Cbermittlung meiner Daten f=C3=BCr
Werbezwecke oder f=C3=BCr die Markt- oder Meinungsforschung (=C2=A7 28 Abs.=
 4 BDSG).

--Sig_/iHP7SO0wt39=S6dIEnn8.v3
Content-Type: application/pgp-signature
Content-Description: OpenPGP digital signature

-----BEGIN PGP SIGNATURE-----

iLUEARMKAB0WIQQZVZMzAtwC2T/86TrS528fyFhYlAUCWS2kHwAKCRDS528fyFhY
lDdTAgCcUsMSl+b9fQsNDYh5yWOalegvqcQZ7/1Tq0fEF9fZAgelyN46mfedTwEb
f4Uj+4+RB2tadAPcZr3ySSWpU4PoAf0XJyxBxUqNklfgonxA9p90fiCqkb5HgQcE
2+FBXq1mhBz2hCi9lXa0J+xhYq/8W4LYMR6+4lDpUpO/IY2/MI+z
=t7AJ
-----END PGP SIGNATURE-----

--Sig_/iHP7SO0wt39=S6dIEnn8.v3--