From owner-freebsd-security@freebsd.org Tue May 30 17:14:51 2017 Return-Path: Delivered-To: freebsd-security@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 97BA0B88CED for ; Tue, 30 May 2017 17:14:51 +0000 (UTC) (envelope-from dim@FreeBSD.org) Received: from tensor.andric.com (tensor.andric.com [IPv6:2001:470:7a58:1::1]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "tensor.andric.com", Issuer "COMODO RSA Domain Validation Secure Server CA" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 59353702C6 for ; Tue, 30 May 2017 17:14:51 +0000 (UTC) (envelope-from dim@FreeBSD.org) Received: from [IPv6:2001:470:7a58::e89a:2c13:f68d:fce3] (unknown [IPv6:2001:470:7a58:0:e89a:2c13:f68d:fce3]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by tensor.andric.com (Postfix) with ESMTPSA id D1B8C190BB; Tue, 30 May 2017 19:14:48 +0200 (CEST) From: Dimitry Andric Message-Id: Content-Type: multipart/signed; boundary="Apple-Mail=_E6B5373A-0FC4-48E9-AD3C-C11B3945C06F"; protocol="application/pgp-signature"; micalg=pgp-sha1 Mime-Version: 1.0 (Mac OS X Mail 10.3 \(3273\)) Subject: Re: Samba CVE-2017-7494 and SMB implementation of FreeBSD 10 through 12 Date: Tue, 30 May 2017 19:14:42 +0200 In-Reply-To: <20170530185559.2b94ca1b@thor.intern.walstatt.dynvpn.de> Cc: freebsd-security@freebsd.org To: "O. Hartmann" References: <20170530185559.2b94ca1b@thor.intern.walstatt.dynvpn.de> X-Mailer: Apple Mail (2.3273) X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 30 May 2017 17:14:51 -0000 --Apple-Mail=_E6B5373A-0FC4-48E9-AD3C-C11B3945C06F Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=us-ascii On 30 May 2017, at 18:55, O. Hartmann wrote: >=20 > Am Mon, 29 May 2017 23:47:46 +0200 > Dimitry Andric schrieb: >=20 >> On 29 May 2017, at 18:53, Darko Gavrilovic = wrote: >>>=20 >>> Hello, does anyone know or able to confirm if Samba CVE-2017-7494 >>> affects Samba 3.6.25 on Freebsd 9.x? >>>=20 >>> https://lists.samba.org/archive/samba-announce/2017/000406.html >>=20 >> The advisory very clearly says "all versions of Samba from 3.5.0 >> onwards", so yes. In addition, the 3.x series is dead, and = completely >> unsupported. It is probably wise to upgrade, for example to 4.6.4. >>=20 >> -Dimitry >>=20 >=20 > I'm just curious and to have an answere at hand for my superiors: >=20 > FreeBSD has a SMB implementation we uitlise with FreeBSD 10.3 and = 11.0. Is FreeBSD's > implementation somehow affected by the bug revealed in SAMBA >=3D = 3.6.25? If you mean smbfs, then that is an SMB *client* only, not a server. CVE-2017-7494 is specifically about an exploitable bug in Samba's SMB server component. FreeBSD does not provide any SMB server in the base system. That said, I don't know whether there are any security bugs in our smbfs client implementation. It is really a completely different matter. The code seems to have been largely unmaintained for years, though, so purely on that basis it does not inspire a great deal of confidence. -Dimitry --Apple-Mail=_E6B5373A-0FC4-48E9-AD3C-C11B3945C06F Content-Transfer-Encoding: 7bit Content-Disposition: attachment; filename=signature.asc Content-Type: application/pgp-signature; name=signature.asc Content-Description: Message signed with OpenPGP -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.30 iEYEARECAAYFAlktqIoACgkQsF6jCi4glqOoEQCgsn14YyzVu39JvPfboMpv7HiV R7gAniPxPk/mmsyt3yJA0/IJcKy3Yt2n =vLU9 -----END PGP SIGNATURE----- --Apple-Mail=_E6B5373A-0FC4-48E9-AD3C-C11B3945C06F--