Samba: Multiple vulnerabilities

Samba: Multiple vulnerabilities Multiple vulnerabilities have been found in Samba, the worst of which could lead to remote code execution. samba 2020-03-25 2020-03-25 664316 672140 686036 693558 702928 706144 remote 4.9.18 4.10.13 4.11.6 4.11.6

Samba is a suite of SMB and CIFS client/server programs.

Multiple vulnerabilities have been discovered in Samba. Please review the CVE identifiers referenced below for details.

A remote attacker could possibly execute arbitrary code, cause a Denial of Service condition, conduct a man-in-the-middle attack, or obtain sensitive information.

There is no known workaround at this time.

All Samba 4.9.x users should upgrade to the latest version:


      # emerge --sync
      # emerge --ask --oneshot --verbose ">=net-fs/samba-4.9.18"

All Samba 4.10.x users should upgrade to the latest version:


      # emerge --sync
      # emerge --ask --oneshot --verbose ">=net-fs/samba-4.10.13"

All Samba 4.11.x users should upgrade to the latest version:


      # emerge --sync
      # emerge --ask --oneshot --verbose ">=net-fs/samba-4.11.6"

CVE-2018-10858 CVE-2018-10918 CVE-2018-10919 CVE-2018-1139 CVE-2018-1140 CVE-2018-14629 CVE-2018-16841 CVE-2018-16851 CVE-2018-16852 CVE-2018-16853 CVE-2018-16857 CVE-2018-16860 CVE-2019-10197 CVE-2019-14861 CVE-2019-14870 CVE-2019-14902 CVE-2019-14907 CVE-2019-19344 whissi whissi