211009 – net/samba43: version 4.3.11 released, security fix (CVE-2016-2119)

Bug 211009 - net/samba43: version 4.3.11 released, security fix (CVE-2016-2119)

Summary: net/samba43: version 4.3.11 released, security fix (CVE-2016-2119)

Status:	Closed FIXED

Alias:	None

Product:	Ports & Packages
Classification:	Unclassified
Component:	Individual Port(s) (show other bugs)
Version:	Latest
Hardware:	Any Any

Importance:	Normal Affects Many People
Assignee:	Timur I. Bakeyev

URL:	https://www.samba.org/samba/history/s...
Keywords:	needs-patch, security

Depends on:
Blocks:

Reported:	2016-07-11 13:44 UTC by dasti
Modified:	2016-07-13 13:34 UTC (History)
CC List:	2 users (show)

See Also:

Flags:	bugzilla: maintainer-feedback? (timur) feld: merge-quarterly+

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description dasti 2016-07-11 13:44:38 UTC

This is a security release in order to address the following defect:
o  CVE-2016-2119 (Client side SMB2/3 required signing can be downgraded)


release note :
https://www.samba.org/samba/history/samba-4.3.11.html

details : 
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2119
https://www.samba.org/samba/security/CVE-2016-2119.html