| Revision Date: | 2013-11-13 | Version: | 1 | | Title: | CVE-2013-4476 on Ubuntu 16.04 LTS (xenial) - medium. | | Description: | Samba 4.0.x before 4.0.11 and 4.1.x before 4.1.1, when LDAP or HTTP is provided over SSL, uses world-readable permissions for a private key, which allows local users to obtain sensitive information by reading the key file, as demonstrated by access to the local filesystem on an AD domain controller.
| | Family: | unix | Class: | vulnerability | | Status: | | Reference(s): | CVE-2013-4476
| | Platform(s): | Ubuntu 16.04 LTS
| Product(s): | | | Definition Synopsis | | Ubuntu 16.04 LTS (xenial) is installed. AND Package Information
NOT ctdb package in xenial, while related to the CVE in some way, is not affected.
OR NOT libnss-winbind package in xenial, while related to the CVE in some way, is not affected.
OR NOT libpam-winbind package in xenial, while related to the CVE in some way, is not affected.
OR NOT libparse-pidl-perl package in xenial, while related to the CVE in some way, is not affected.
OR NOT libsmbclient package in xenial, while related to the CVE in some way, is not affected.
OR NOT libwbclient0 package in xenial, while related to the CVE in some way, is not affected.
OR NOT python-samba package in xenial, while related to the CVE in some way, is not affected.
OR NOT registry-tools package in xenial, while related to the CVE in some way, is not affected.
OR NOT samba package in xenial, while related to the CVE in some way, is not affected.
OR NOT samba-common package in xenial, while related to the CVE in some way, is not affected.
OR NOT samba-common-bin package in xenial, while related to the CVE in some way, is not affected.
OR NOT samba-dsdb-modules package in xenial, while related to the CVE in some way, is not affected.
OR NOT samba-libs package in xenial, while related to the CVE in some way, is not affected.
OR NOT samba-testsuite package in xenial, while related to the CVE in some way, is not affected.
OR NOT samba-vfs-modules package in xenial, while related to the CVE in some way, is not affected.
OR NOT smbclient package in xenial, while related to the CVE in some way, is not affected.
OR NOT winbind package in xenial, while related to the CVE in some way, is not affected.
|
|