CVE-2016-2113
- Source
- https://cve.org/CVERecord?id=CVE-2016-2113
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-2113.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2016-2113
- Downstream
- Related
- Published
- 2016-04-25T00:59:03.957Z
- Modified
- 2026-04-11T12:02:29.490891Z
- Severity
-
- 7.4 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N CVSS Calculator
- Summary
- [none]
- Details
-
Samba 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not verify X.509 certificates from TLS servers, which allows man-in-the-middle attackers to spoof LDAPS and HTTPS servers and obtain sensitive information via a crafted certificate.
- Database specific
{ "unresolved_ranges": [ { "cpe": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "extracted_events": [ { "last_affected": "14.04" } ], "source": "CPE_FIELD" }, { "cpe": "cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "15.10" } ], "source": "CPE_FIELD" }, { "cpe": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "extracted_events": [ { "last_affected": "16.04" } ], "source": "CPE_FIELD" } ] }- References
-
- http://badlock.org/
- http://lists.fedoraproject.org/pipermail/package-announce/2016-April/182185.html
- http://lists.fedoraproject.org/pipermail/package-announce/2016-April/182272.html
- http://lists.fedoraproject.org/pipermail/package-announce/2016-April/182288.html
- http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00020.html
- http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00021.html
- http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00022.html
- http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00023.html
- http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00024.html
- http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00042.html
- http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00047.html
- http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00048.html
- http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
- http://www.securitytracker.com/id/1035533
- http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.458012
- https://www.samba.org/samba/history/samba-4.2.10.html
- https://www.samba.org/samba/latest_news.html#4.4.2
- http://rhn.redhat.com/errata/RHSA-2016-0612.html
- http://rhn.redhat.com/errata/RHSA-2016-0614.html
- http://rhn.redhat.com/errata/RHSA-2016-0618.html
- http://rhn.redhat.com/errata/RHSA-2016-0620.html
- http://www.debian.org/security/2016/dsa-3548
- http://www.ubuntu.com/usn/USN-2950-1
- http://www.ubuntu.com/usn/USN-2950-2
- http://www.ubuntu.com/usn/USN-2950-3
- http://www.ubuntu.com/usn/USN-2950-4
- http://www.ubuntu.com/usn/USN-2950-5
- https://bto.bluecoat.com/security-advisory/sa122
- https://security.gentoo.org/glsa/201612-47
- https://www.samba.org/samba/security/CVE-2016-2113.html
Affected packages
Git / github.com/samba-team/samba
Affected ranges
- Type
- GIT
- Repo
- https://github.com/samba-team/samba
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affected
- Database specific
{ "cpe": [ "cpe:2.3:a:samba:samba:4.0.0:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.0.1:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.0.2:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.0.3:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.0.4:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.0.5:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.0.6:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.0.7:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.0.8:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.0.9:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.0.10:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.0.11:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.0.12:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.0.13:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.0.14:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.0.15:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.0.16:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.0.17:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.0.18:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.0.19:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.0.20:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.0.21:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.0.22:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.0.23:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.0.24:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.0.25:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.0.26:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.1.0:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.1.1:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.1.2:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.1.3:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.1.4:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.1.5:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.1.6:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.1.7:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.1.8:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.1.9:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.1.10:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.1.11:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.1.12:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.1.13:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.1.14:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.1.15:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.1.16:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.1.17:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.1.18:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.1.19:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.1.20:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.1.21:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.1.22:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.1.23:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.2.0:rc1:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.2.0:rc2:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.2.0:rc3:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.2.0:rc4:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.2.1:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.2.2:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.2.3:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.2.4:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.2.5:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.2.6:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.2.7:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.2.8:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.2.9:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.3.0:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.3.1:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.3.2:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.3.3:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.3.4:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.3.5:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.3.6:*:*:*:*:*:*:*", "cpe:2.3:a:samba:samba:4.4.0:*:*:*:*:*:*:*" ], "extracted_events": [ { "introduced": "0" }, { "last_affected": "4.0.0" }, { "last_affected": "4.0.1" }, { "last_affected": "4.0.2" }, { "last_affected": "4.0.3" }, { "last_affected": "4.0.4" }, { "last_affected": "4.0.5" }, { "last_affected": "4.0.6" }, { "last_affected": "4.0.7" }, { "last_affected": "4.0.8" }, { "last_affected": "4.0.9" }, { "last_affected": "4.0.10" }, { "last_affected": "4.0.11" }, { "last_affected": "4.0.12" }, { "last_affected": "4.0.13" }, { "last_affected": "4.0.14" }, { "last_affected": "4.0.15" }, { "last_affected": "4.0.16" }, { "last_affected": "4.0.17" }, { "last_affected": "4.0.18" }, { "last_affected": "4.0.19" }, { "last_affected": "4.0.20" }, { "last_affected": "4.0.21" }, { "last_affected": "4.0.22" }, { "last_affected": "4.0.23" }, { "last_affected": "4.0.24" }, { "last_affected": "4.0.25" }, { "last_affected": "4.0.26" }, { "last_affected": "4.1.0" }, { "last_affected": "4.1.1" }, { "last_affected": "4.1.2" }, { "last_affected": "4.1.3" }, { "last_affected": "4.1.4" }, { "last_affected": "4.1.5" }, { "last_affected": "4.1.6" }, { "last_affected": "4.1.7" }, { "last_affected": "4.1.8" }, { "last_affected": "4.1.9" }, { "last_affected": "4.1.10" }, { "last_affected": "4.1.11" }, { "last_affected": "4.1.12" }, { "last_affected": "4.1.13" }, { "last_affected": "4.1.14" }, { "last_affected": "4.1.15" }, { "last_affected": "4.1.16" }, { "last_affected": "4.1.17" }, { "last_affected": "4.1.18" }, { "last_affected": "4.1.19" }, { "last_affected": "4.1.20" }, { "last_affected": "4.1.21" }, { "last_affected": "4.1.22" }, { "last_affected": "4.1.23" }, { "last_affected": "4.2.0-rc1" }, { "last_affected": "4.2.0-rc2" }, { "last_affected": "4.2.0-rc3" }, { "last_affected": "4.2.0-rc4" }, { "last_affected": "4.2.1" }, { "last_affected": "4.2.2" }, { "last_affected": "4.2.3" }, { "last_affected": "4.2.4" }, { "last_affected": "4.2.5" }, { "last_affected": "4.2.6" }, { "last_affected": "4.2.7" }, { "last_affected": "4.2.8" }, { "last_affected": "4.2.9" }, { "last_affected": "4.3.0" }, { "last_affected": "4.3.1" }, { "last_affected": "4.3.2" }, { "last_affected": "4.3.3" }, { "last_affected": "4.3.4" }, { "last_affected": "4.3.5" }, { "last_affected": "4.3.6" }, { "last_affected": "4.4.0" } ], "source": "CPE_FIELD" }
Affected versions
ldb-1.*
ldb-1.1.0
ldb-1.1.10
ldb-1.1.11
ldb-1.1.12
ldb-1.1.13
ldb-1.1.14
ldb-1.1.15
ldb-1.1.16
ldb-1.1.17
ldb-1.1.18
ldb-1.1.19
ldb-1.1.2
ldb-1.1.20
ldb-1.1.21
ldb-1.1.22
ldb-1.1.23
ldb-1.1.25
ldb-1.1.3
ldb-1.1.4
ldb-1.1.5
ldb-1.1.6
ldb-1.1.8
ldb-1.1.9
samba-4.*
samba-4.0.0
samba-4.0.0alpha10
samba-4.0.0alpha17
samba-4.0.0alpha18
samba-4.0.0alpha19
samba-4.0.0alpha20
samba-4.0.0alpha21
samba-4.0.0alpha6
samba-4.0.0alpha7
samba-4.0.0alpha8
samba-4.0.0alpha9
samba-4.0.0beta1
samba-4.0.0beta2
samba-4.0.0beta3
samba-4.0.0beta4
samba-4.0.0beta5
samba-4.0.0beta6
samba-4.0.0beta7
samba-4.0.0beta8
samba-4.0.0rc1
samba-4.0.0rc2
samba-4.0.0rc4
samba-4.0.0rc5
samba-4.0.0rc6
samba-4.0.1
samba-4.0.10
samba-4.0.11
samba-4.0.12
samba-4.0.13
samba-4.0.14
samba-4.0.15
samba-4.0.16
samba-4.0.17
samba-4.0.18
samba-4.0.19
samba-4.0.2
samba-4.0.20
samba-4.0.21
samba-4.0.22
samba-4.0.23
samba-4.0.24
samba-4.0.25
samba-4.0.26
samba-4.0.3
samba-4.0.4
samba-4.0.5
samba-4.0.6
samba-4.0.7
samba-4.0.8
samba-4.0.9
samba-4.1.0
samba-4.1.0rc1
samba-4.1.0rc2
samba-4.1.1
samba-4.1.10
samba-4.1.11
samba-4.1.12
samba-4.1.13
samba-4.1.14
samba-4.1.15
samba-4.1.16
samba-4.1.17
samba-4.1.18
samba-4.1.19
samba-4.1.2
samba-4.1.20
samba-4.1.21
samba-4.1.22
samba-4.1.23
samba-4.1.3
samba-4.1.4
samba-4.1.5
samba-4.1.6
samba-4.1.7
samba-4.1.8
samba-4.1.9
samba-4.2.0
samba-4.2.0rc1
samba-4.2.0rc2
samba-4.2.0rc3
samba-4.2.0rc4
samba-4.2.0rc5
samba-4.2.1
samba-4.2.2
samba-4.2.3
samba-4.2.4
samba-4.2.5
samba-4.2.6
samba-4.2.7
samba-4.2.8
samba-4.2.9
samba-4.3.0
samba-4.3.0rc1
samba-4.3.0rc2
samba-4.3.0rc3
samba-4.3.0rc4
samba-4.3.1
samba-4.3.2
samba-4.3.3
samba-4.3.4
samba-4.3.5
samba-4.3.6
samba-4.4.0
samba-4.4.0rc1
samba-4.4.0rc2
samba-4.4.0rc3
samba-4.4.0rc4
samba-4.4.0rc5
talloc-1.*
talloc-1.3.1
talloc-2.*
talloc-2.0.0
talloc-2.0.7
talloc-2.0.8
talloc-2.1.0
talloc-2.1.1
talloc-2.1.2
talloc-2.1.3
talloc-2.1.4
talloc-2.1.5
tdb-1.*
tdb-1.1.5
tdb-1.2.0
tdb-1.2.1
tdb-1.2.10
tdb-1.2.11
tdb-1.2.12
tdb-1.2.13
tdb-1.3.0
tdb-1.3.1
tdb-1.3.2
tdb-1.3.3
tdb-1.3.4
tdb-1.3.5
tdb-1.3.6
tdb-1.3.7
tdb-1.3.8
tevent-0.*
tevent-0.9.11
tevent-0.9.12
tevent-0.9.13
tevent-0.9.14
tevent-0.9.15
tevent-0.9.16
tevent-0.9.17
tevent-0.9.18
tevent-0.9.19
tevent-0.9.20
tevent-0.9.21
tevent-0.9.22
tevent-0.9.23
tevent-0.9.24
tevent-0.9.25
tevent-0.9.26
tevent-0.9.8