DevSecOps and Automation on Power

Expand all | Collapse all

CVE-2016-2118: Samba Badlock Vulnerability, which samba version to be upgrade to fix the CVE-2016-2118 defect.

  • 1.  CVE-2016-2118: Samba Badlock Vulnerability, which samba version to be upgrade to fix the CVE-2016-2118 defect.

    Posted Fri September 16, 2022 03:10 AM

    CVE-2016-2118: Samba Badlock Vulnerability, which samba version to be upgrade to fix the CVE-2016-2118 defect.

    Currently running Samba for AIX 71. (7100-00-03-1115).
    SAMBA version:
       samba.base 3.3.12.0 COMMITTED Samba for AIX
       samba.license 3.3.12.0 COMMITTED Samba for AIX
       samba.man.en_US 3.3.12.0 COMMITTED Samba for AIX
       samba.base 3.3.12.0 COMMITTED Samba for AIX

    Which of samba version to be an upgrade to help to fix the CVE-2016-2118 defect?

    And i also navigate url: https://public.dhe.ibm.com/aix/freeSoftware/aixtoolbox/RPMS/ppc/samba/ and https://www.ibm.com/support/pages/aix-toolbox-open-source-software-downloads-alpha

    There are having samba-4.3.x-samba-4.10.x and 4.14.12 (7.1)

    Please advise.

    Best regards,
    Charin Kumjudpai.



    ------------------------------
    CHARIN KUMJUDPAI
    ------------------------------


  • 2.  RE: CVE-2016-2118: Samba Badlock Vulnerability, which samba version to be upgrade to fix the CVE-2016-2118 defect.

    Posted Fri September 16, 2022 09:28 AM
    Hi Charin, I recommend that you ask this question in the AIX open source community which you can find here. https://community.ibm.com/community/user/power/communities/open-source-home

    Thank you!

    ------------------------------
    Linda Alkire
    IBM
    Minneapolis MN
    ------------------------------

    Original Message