security vulnerabilities for samba

Silambarasan Madhappan silambarasan0109 at
Tue Oct 10 11:20:05 UTC 2017


Samba has announce  3 CVE’s (CVE-2017-12150 CVE-2017-12151 CVE-2017-12163)

Workaround is available for all CVE’s but workaround for

CVE-2017-12151 :- *client max protocol = NT1* and

CVE-2017-12163 :-  *server min protocol = SMB2_02*

are contradicting to each other.

Please suggest how can work around for all CVE be implement in smb.conf.



More information about the samba-technical mailing list