Debian Long Term Support / LTS Security Information / 2016 / Security Information -- DLA-509-1 samba

Debian Security Advisory

DLA-509-1 samba -- LTS security update

Date Reported:

09 Jun 2016

Affected Packages:

samba

Vulnerable:

Yes

Security database references:

In the Debian bugtracking system: Bug 820982, Bug 821811.

More information:

The Samba 2:3.6.6-6+deb7u9 release, issued by the DSA-3548-1, introduced different regressions causing trust relationship with Win 7 domains to fail. The fix for the CVE-2016-2115 has been reverted, so administrators should set 'client signing = required' instead.

For Debian 7 Wheezy, these problems have been fixed in version 2:3.6.6-6+deb7u10. More information is available in the NEWS file included in this samba release.

We recommend that you upgrade your samba packages.

Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS