history/security.html: make the borders within the table visible

[samba-web.git] / history / security.html

<!--#include virtual="/samba/header.html" --> 
  <title>Samba - Security Updates and Information</title>
<!--#include virtual="header_history.html" -->

<h2>Samba Security Releases</h2>

    <p>Security releases for Samba are listed below by their release
date. The previously affected versions of Samba are listed alongside
the appropriate security concern. For complete information, follow the
link to full release notes for each release.</p>


    <table class="security_table">
      <th colspan="6">Samba Security Releases</th>
      <tr >
        <td><em>Date Issued</em></td>
        <td><em>Download</em></td>
        <td><em>Known Issue(s)</em></td>
        <td><em>Affected Releases</em></td>
        <td><em>CVE ID #</em></td>
        <td><em>Details</em></td>
      </tr>

    <tr>
        <td>16 Dec 2015</td>
        <td><a href="/samba/ftp/patches/security/samba-4.3.2-security-2015-12-16.patch">
        patch for Samba 4.3.2</a><br />
        <a href="/samba/ftp/patches/security/samba-4.2.6-security-2015-12-16.patch">
        patch for Samba 4.2.6</a><br />
        <a href="/samba/ftp/patches/security/samba-4.1.21-security-2015-12-16.patch">
        patch for Samba 4.1.21</a><br />
        <a href="/samba/ftp/patches/security/samba-3.6.25-security-2015-12-16.patch">
        patch for Samba 3.6.25</a><br />
        <td>Numerous CVEs. Please see the announcements for details.
        </td>
        <td>3.0.0 to 4.3.2</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3223">CVE-2015-3223</a>, 
            <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5252">CVE-2015-5252</a>, 
            <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5296">CVE-2015-5296</a>, 
            <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5299">CVE-2015-5299</a>, 
            <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5330">CVE-2015-5330</a>, 
            <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7540">CVE-2015-7540</a>, 
            <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8467">CVE-2015-8467</a>
        </td>
        <td><a href="/samba/security/CVE-2015-3223.html">Announcement</a>
            <a href="/samba/security/CVE-2015-5252.html">Announcement</a>
            <a href="/samba/security/CVE-2015-5296.html">Announcement</a>
            <a href="/samba/security/CVE-2015-5299.html">Announcement</a>
            <a href="/samba/security/CVE-2015-5330.html">Announcement</a>
            <a href="/samba/security/CVE-2015-7540.html">Announcement</a>
            <a href="/samba/security/CVE-2015-8467.html">Announcement</a>
        </td>
    </tr>

    <tr>
        <td>23 Feb 2015</td>
        <td><a href="/samba/ftp/patches/security/samba-4.1.16-CVE-2015-0240.patch">
        patch for Samba 4.1.16</a><br />
        <a href="/samba/ftp/patches/security/samba-4.0.24-CVE-2015-0240.patch">
        patch for Samba 4.0.24</a><br />
        <a href="/samba/ftp/patches/security/samba-3.6.24-CVE-2015-0240.patch">
        patch for Samba 3.6.24</a><br />
        <a href="/samba/ftp/patches/security/samba-3.5.22-CVE-2015-0240.patch">
        patch for Samba 3.5.22</a><br />
        <td>Unexpected code execution in smbd.
        </td>
        <td>3.5.0 - 4.2.0rc4</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0240">CVE-2015-0240</a>
        </td>
        <td><a href="/samba/security/CVE-2015-0240.html">Announcement</a>
        </td>
    </tr>

    <tr>
        <td>15 Jan 2015</td>
        <td><a href="/samba/ftp/patches/security/samba-4.1.15-CVE-2014-8143.patch">
        patch for Samba 4.1.15</a><br />
        <a href="/samba/ftp/patches/security/samba-4.0.23-CVE-2014-8143.patch">
        patch for Samba 4.0.23</a><br />
        <td>Elevation of privilege to Active Directory Domain Controller.
        </td>
        <td>4.0.0 - 4.1.15</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8143">CVE-2014-8143</a>
        </td>
        <td><a href="/samba/security/CVE-2014-8143.html">Announcement</a>
        </td>
    </tr>

    <tr>
        <td>01 Aug 2014</td>
        <td><a href="/samba/ftp/patches/security/samba-4.1.10-CVE-2014-3560.patch">
        patch for Samba 4.1.10</a><br />
        <a href="/samba/ftp/patches/security/samba-4.0.20-CVE-2014-3560.patch">
        patch for Samba 4.0.20</a><br />
        <td>Remote code execution in nmbd.
        </td>
        <td>4.0.0 - 4.1.10</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3560">CVE-2014-3560</a>
        </td>
        <td><a href="/samba/security/CVE-2014-3560.html">Announcement</a>
        </td>
    </tr>

    <tr>
        <td>23 Jun 2014</td>
        <td><a href="/samba/ftp/patches/security/samba-4.1.8-CVE-2014-0244-CVE-2014-3493.patch">
        patch for Samba 4.1.8</a><br />
        <a href="/samba/ftp/patches/security/samba-4.0.18-CVE-2014-0244-CVE-2014-3493.patch">
        patch for Samba 4.0.18</a><br />
        <a href="/samba/ftp/patches/security/samba-3.6.23-CVE-2014-0244-CVE-2014-3493.patch">
        patch for Samba 3.6.23</a><br />
        <td>Denial of service - CPU loop, Denial of service - Server crash/memory corruption.
        </td>
        <td>please refer to the advisories</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0244">CVE-2014-0244</a>, 
            <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3493">CVE-2014-3493</a>
        </td>
        <td><a href="/samba/security/CVE-2014-0244.html">Announcement</a>
            <a href="/samba/security/CVE-2014-3493.html">Announcement</a>
        </td>
    </tr>

    <tr>
        <td>03 June 2014</td>
        <td><a href="/samba/ftp/patches/security/samba-4.0.17-CVE-2014-0178-CVE-2014-0239.patch">
        patch for Samba 4.0.17</a><br />
        <a href="/samba/ftp/patches/security/samba-4.1.7-CVE-2014-0178-CVE-2014-0239.patch">
        patch for Samba 4.1.7</a><br />
        <a href="/samba/ftp/patches/security/samba-3.6.23-CVE-2014-0178.patch">
        patch for Samba 3.6.23 (CVE-2014-0178 only)</a><br />
        <td>Uninitialized memory exposure, Potential DOS in Samba internal DNS server.
        </td>
        <td>please refer to the advisories</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0178">CVE-2014-0178</a>, 
            <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0239">CVE-2014-0239</a>
        </td>
        <td><a href="/samba/security/CVE-2014-0178.html">Announcement</a>
            <a href="/samba/security/CVE-2014-0239.html">Announcement</a>
        </td>
    </tr>

    <tr>
        <td>11 Mar 2014</td>
        <td><a href="/samba/ftp/patches/security/samba-4.1.5-CVE-2013-4496-CVE-2013-6442.patch">
        patch for Samba 4.1.5</a><br />
        <a href="/samba/ftp/patches/security/samba-4.0.15-CVE-2013-4496-CVE-2013-6442.patch">
        patch for Samba 4.0.15</a><br />
        <a href="/samba/ftp/patches/security/samba-3.6.22-CVE-2013-4496.patch">
        patch for Samba 3.6.22</a><br />
        <td>Password lockout not enforced for SAMR password changes, smbcacls can remove a file
        or directory ACL by mistake.
        </td>
        <td>please refer to the advisories</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4496">CVE-2013-4496</a>, 
            <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6442">CVE-2013-6442</a>
        </td>
        <td><a href="/samba/security/CVE-2013-4496.html">Announcement</a>
            <a href="/samba/security/CVE-2013-6442.html">Announcement</a>
        </td>
    </tr>

    <tr>
        <td>09 Dec 2013</td>
        <td><a href="/samba/ftp/patches/security/samba-4.1.2-CVE-2013-4408-CVE-2012-6150.patch">
        patch for Samba 4.1.2</a><br />
        <a href="/samba/ftp/patches/security/samba-4.0.12-CVE-2013-4408-CVE-2012-6150.patch">
        patch for Samba 4.0.12</a><br />
        <a href="/samba/ftp/patches/security/samba-3.6.21-CVE-2013-4408-CVE-2012-6150.patch">
        patch for Samba 3.6.21</a><br />
        <a href="/samba/ftp/patches/security/samba-3.5.22-CVE-2013-4408.patch">
        patch for Samba 3.5.22</a><br />
        <a href="/samba/ftp/patches/security/samba-3.4.17-CVE-2013-4408.patch">
        patch for Samba 3.4.17</a>
        <td>DCE-RPC fragment length field is incorrectly checked, pam_winbind
        login without require_membership_of restrictions.</td>
        <td>please refer to the advisories</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4408">CVE-2013-4408</a>, 
            <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6150">CVE-2012-6150</a>
        </td>
        <td><a href="/samba/security/CVE-2013-4408.html">Announcement</a>
            <a href="/samba/security/CVE-2012-6150.html">Announcement</a>
        </td>
    </tr>

    <tr>
        <td>11 Nov 2013</td>
        <td><a href="/samba/ftp/patches/security/samba-4.1.0-CVE-2013-4475-CVE-2013-4476.patch">
        patch for Samba 4.1.0</a><br />
        <a href="/samba/ftp/patches/security/samba-4.0.10-CVE-2013-4475-CVE-2013-4476.patch">
        patch for Samba 4.0.10</a><br />
        <a href="/samba/ftp/patches/security/samba-3.6.19-CVE-2013-4475.patch">
        patch for Samba 3.6.19</a><br />
        <td>ACLs are not checked on opening an alternate data stream on a file
            or directory, Private key in key.pem world readable.</td>
        <td>3.2.0 - 4.1.0, 4.0.0 - 4.0.10, 4.1.0</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4475">CVE-2013-4475</a>, 
            <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4476">CVE-2013-4476</a>
        </td>
        <td><a href="/samba/security/CVE-2013-4475.html">Announcement</a>
            <a href="/samba/security/CVE-2013-4476.html">Announcement</a>
        </td>
    </tr>

    <tr>
        <td>05 Aug 2013</td>
        <td><a href="/samba/ftp/patches/security/samba-4.0.7-CVE-2013-4124.patch">
        patch for Samba 4.0.7</a><br />
        <a href="/samba/ftp/patches/security/samba-3.6.16-CVE-2013-4124.patch">
        patch for Samba 3.6.16</a><br />
        <a href="/samba/ftp/patches/security/samba-3.5.21-CVE-2013-4124.patch">
        patch for Samba 3.5.21</a><br />
        <td>Denial of service - CPU loop and memory allocation.</td>
        <td>3.0.x-4.0.7</td>
        <td><a
        href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4124">CVE-2013-4124</a>
        </td>
        <td><a href="/samba/security/CVE-2013-4124.html">Announcement</a>
        </td>
    </tr>

    <tr>
        <td>02 Apr 2013</td>
        <td><a href="/samba/ftp/patches/security/samba-3.6-CVE-2013-0454.patch">
        patch for Samba 3.6.5</a>
        <td>A writable configured share might get read only</td>
        <td>3.6.0 - 3.6.5 (inclusive)</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0454">CVE-2013-0454</a>
        </td>
        <td><a href="/samba/security/CVE-2013-0454.html">Announcement</a>
        </td>
    </tr>

    <tr>
        <td>19 Mar 2013</td>
        <td><a href="/samba/ftp/patches/security/samba-4.0.3-CVE-2013-1863.patch">
        patch for Samba 4.0.3</a>
        <td>World-writeable files may be created in additional shares on a Samba
        4.0 AD DC.</td>
        <td>4.0.0rc6-4.0.3</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1863">CVE-2013-1863</a>
        </td>
        <td><a href="/samba/security/CVE-2013-1863.html">Announcement</a>
        </td>
    </tr>

    <tr>
        <td>30 Jan 2013</td>
        <td><a href="/samba/ftp/patches/security/samba-4.0.1-CVE-2013-0213-CVE-2013-0214.patch">
        patch for Samba 4.0.1</a><br />
        <a href="/samba/ftp/patches/security/samba-3.6.11-CVE-2013-0213-CVE-2013-0214.patch">
        patch for Samba 3.6.11</a><br />
        <a href="/samba/ftp/patches/security/samba-3.5.20-CVE-2013-0213-CVE-2013-0214.patch">
        patch for Samba 3.5.20</a><br />
        <td>Clickjacking issue and potential XSRF in SWAT.</td>
        <td>3.0.x-4.0.1</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0213">CVE-2013-0213</a>, 
            <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0214">CVE-2013-0214</a>
        </td>
        <td><a href="/samba/security/CVE-2013-0213.html">Announcement</a>
            <a href="/samba/security/CVE-2013-0214.html">Announcement</a>
        </td>
    </tr>

    <tr>
        <td>15 Jan 2013</td>
        <td><a href="/samba/ftp/patches/security/samba-4.0.0-CVE-2013-0172.patch">
        patch for Samba 4.0.0</a>
        <td>Samba 4.0 as an AD DC may provide authenticated users with write
        access to LDAP directory objects.</td>
        <td>4.0.0</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0172">CVE-2013-0172</a></td>
        <td><a href="/samba/security/CVE-2013-0172.html">Announcement</a></td>
    </tr>

    <tr>
        <td>30 Apr 2012</td>
        <td><a href="/samba/ftp/patches/security/samba-3.4.16-CVE-2012-2111.patch">
        patch for Samba 3.4.16</a><br />
        <a href="/samba/ftp/patches/security/samba-3.5.14-CVE-2012-2111.patch">
        patch for Samba 3.5.14</a><br />
        <a href="/samba/ftp/patches/security/samba-3.6.4-CVE-2012-2111.patch">
        patch for Samba 3.6.4</a><br />
        <td>Incorrect permission checks when granting/removing privileges can
        compromise file server security.</td>
        <td>3.4.x-3.6.4</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2111">CVE-2012-2111</a></td>
        <td><a href="/samba/security/CVE-2012-2111.html">Announcement</a></td>
    </tr>

    <tr>
        <td>10 Apr 2012</td>
        <td><a href="/samba/ftp/patches/security/samba-3.0.37-CVE-2012-1182.patch">
        patch for Samba 3.0.37</a><br />
        <a href="/samba/ftp/patches/security/samba-3.2.15-CVE-2012-1182.patch">
        patch for Samba 3.2.15</a><br />
        <a href="/samba/ftp/patches/security/samba-3.3.16-CVE-2012-1182.patch">
        patch for Samba 3.3.16</a><br />
        <a href="/samba/ftp/patches/security/samba-3.4.15-CVE-2012-1182.patch">
        patch for Samba 3.4.15</a><br />
        <a href="/samba/ftp/patches/security/samba-3.5.13-CVE-2012-1182.patch">
        patch for Samba 3.5.13</a><br />
        <a href="/samba/ftp/patches/security/samba-3.6.3-CVE-2012-1182.patch">
        patch for Samba 3.6.3</a><br />
        <td>"root" credential remote code execution</td>
        <td>all current releases</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1182">CVE-2012-1182</a></td>
        <td><a href="/samba/security/CVE-2012-1182.html">Announcement</a></td>
    </tr>

    <tr>
        <td>23 Feb 2012</td>
        <td><a href="/samba/ftp/patches/security/samba-3.0-CVE-2012-0870.patch">
        patch for Samba 3.0</a><br />
        <a href="/samba/ftp/patches/security/samba-3.2-CVE-2012-0870.patch">
        patch for Samba 3.2</a><br />
        <a href="/samba/ftp/patches/security/samba-3.3-CVE-2012-0870.patch">
        patch for Samba 3.3</a><br />
        <td>Remote code execution vulnerability in smbd</td>
        <td>pre-3.4</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0870">CVE-2012-0870</a></td>
        <td><a href="/samba/security/CVE-2012-0870.html">Announcement</a></td>
    </tr>

    <tr>
        <td>29 Jan 2012</td>
        <td><a href="/samba/ftp/patches/security/samba-3.6.2-CVE-2012-0817.patch">
        patch for Samba 3.6.2</a>
        <td>Memory leak/Denial of service</td>
        <td>3.6.0-3.6.2</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0817">CVE-2012-0817</a></td>
        <td><a href="/samba/security/CVE-2012-0817.html">Announcement</a></td>
    </tr>

    <tr>
        <td>26 Jul 2011</td>
        <td><a href="/samba/ftp/patches/security/samba-3.3.15-CVE-2011-2522.patch">
        patch for Samba 3.3.15</a><br />
        <a href="/samba/ftp/patches/security/samba-3.4.13-CVE-2011-2522.patch">
        patch for Samba 3.4.13</a><br />
        <a href="/samba/ftp/patches/security/samba-3.5.9-CVE-2011-2522.patch">
        patch for Samba 3.5.9</a><br />
        <td>Cross-Site Request Forgery in SWAT</td>
        <td>all current releases</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2522">CVE-2011-2522</a></td>
        <td><a href="/samba/security/CVE-2011-2522.html">Announcement</a></td>
    </tr>

    <tr>
        <td>26 Jul 2011</td>
        <td><a href="/samba/ftp/patches/security/samba-3.3.15-CVE-2011-2694.patch">
        patch for Samba 3.3.15</a><br />
        <a href="/samba/ftp/patches/security/samba-3.4.13-CVE-2011-2694.patch">
        patch for Samba 3.4.13</a><br />
        <a href="/samba/ftp/patches/security/samba-3.5.9-CVE-2011-2694.patch">
        patch for Samba 3.5.9</a><br />
        <td>Cross-Site Scripting vulnerability in SWAT</td>
        <td>all current releases</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2694">CVE-2011-2694</a></td>
        <td><a href="/samba/security/CVE-2011-2694.html">Announcement</a></td>
    </tr>

    <tr>
        <td>18 Feb 2011</td>
        <td><a href="/samba/ftp/patches/security/samba-3.3.14-CVE-2011-0719.patch">
        patch for Samba 3.3.14</a><br />
        <a href="/samba/ftp/patches/security/samba-3.4.11-CVE-2011-0719.patch">
        patch for Samba 3.4.11</a><br />
        <a href="/samba/ftp/patches/security/samba-3.5.6-CVE-2011-0719.patch">
        patch for Samba 3.5.6</a><br />
        <td>Denial of service - memory corruption</td>
        <td>all current releases</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0719">CVE-2011-0719</a></td>
        <td><a href="/samba/security/CVE-2011-0719.html">Announcement</a></td>
    </tr>

    <tr>
        <td>14 Sep 2010</td>
        <td><a href="/samba/ftp/patches/security/samba-3.3.13-CVE-2010-3069.patch">
        patch for Samba 3.3.13</a><br />
        <a href="/samba/ftp/patches/security/samba-3.4.8-CVE-2010-3069.patch">
        patch for Samba 3.4.8</a><br />
        <a href="/samba/ftp/patches/security/samba-3.5.4-CVE-2010-3069.patch">
        patch for Samba 3.5.4</a><br />
        <td>Buffer Overrun Vulnerability</td>
        <td>all current releases</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3069">CVE-2010-3069</a></td>
        <td><a href="/samba/security/CVE-2010-3069.html">Announcement</a></td>
    </tr>

    <tr>
        <td>16 Jun 2010</td>
        <td><a href="/samba/ftp/patches/security/samba-3.3.12-CVE-2010-2063.patch">
        patch for Samba 3.3.12 and 3.2.15</a><br />
        <a href="/samba/ftp/patches/security/samba-3.0.37-CVE-2010-2063.patch">
        patch for Samba 3.0.37</a><br />
        <td>Memory Corruption Vulnerability</td>
        <td>3.0.x, 3.2.x, 3.3.0-3.3.12</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-CVE-2010-2063">CVE-2010-2063</a></td>
        <td><a href="/samba/security/CVE-2010-2063.html">Announcement</a></td>
    </tr>

    <tr>
        <td>08 Mar 2010</td>
        <td><a href="/samba/ftp/patches/security/samba-3.5.0-CVE-2010-0728.patch">
        patch for Samba 3.5.0</a><br />
        <a href="/samba/ftp/patches/security/samba-3.4.6-CVE-2010-0728.patch">
        patch for Samba 3.4.6</a><br />
        <a href="/samba/ftp/patches/security/samba-3.3.11-CVE-2010-0728.patch">
        patch for Samba 3.3.11</a><br />
        <td>Permission ignored</td>
        <td>3.3.11, 3.4.6, 3.5.0</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0728">CVE-2010-0728</a></td>
        <td><a href="/samba/security/CVE-2010-0728.html">Announcement</a></td>
    </tr>

    <tr>
        <td>02 Feb 2010</td>
                  <td>not available</td>
        <td>Change parameter "wide links" to default to "no"</td>
        <td>pre-3.4.6</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0926">CVE-2010-0926</a></td>
        <td><a href="/samba/security/CVE-2010-0926.html">Announcement</a></td>
    </tr>

    <tr>
        <td>01 Oct 2009</td>
        <td><a href="/samba/ftp/patches/security/samba-3.4.1-CVE-2009-2948-1.patch">
        patch 1 for Samba 3.4.1</a>
        <a href="/samba/ftp/patches/security/samba-3.4.1-CVE-2009-2948-2.patch">
        patch 2 for Samba 3.4.1</a>
        <a href="/samba/ftp/patches/security/samba-3.3.7-CVE-2009-2948-1.patch">
        patch 1 for Samba 3.3.7</a>
        <a href="/samba/ftp/patches/security/samba-3.3.7-CVE-2009-2948-2.patch">
        patch 2 for Samba 3.3.7</a>
        <a href="/samba/ftp/patches/security/samba-3.2.14-CVE-2009-2948-1.patch">
        patch 1 for Samba 3.2.14</a>
        <a href="/samba/ftp/patches/security/samba-3.2.14-CVE-2009-2948-2.patch">
        patch 2 for Samba 3.2.14</a>
        <a href="/samba/ftp/patches/security/samba-3.0.36-CVE-2009-2948-1.patch">
        patch 1 for Samba 3.0.36</a>
        <a href="/samba/ftp/patches/security/samba-3.0.36-CVE-2009-2948-2.patch">
        patch 2 for Samba 3.0.36</a>
        <td>Information disclosure by setuid mount.cifs</td>
        <td>all releases</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2906">CVE-2009-2948</a></td>
        <td><a href="/samba/security/CVE-2009-2948.html">Announcement</a></td>
    </tr>

    <tr>
        <td>01 Oct 2009</td>
        <td><a href="/samba/ftp/patches/security/samba-3.4.1-CVE-2009-2906.patch">
        patch for Samba 3.4.1</a><br />
        <a href="/samba/ftp/patches/security/samba-3.3.7-CVE-2009-2906.patch">
        patch for Samba 3.3.7</a><br />
        <a href="/samba/ftp/patches/security/samba-3.2.14-CVE-2009-2906.patch">
        patch for Samba 3.2.14</a><br />
        <a href="/samba/ftp/patches/security/samba-3.0.36-CVE-2009-2906.patch">
        patch for Samba 3.0.36</a><br />
        <td>Remote DoS against smbd on authenticated connections</td>
        <td>all releases</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2906">CVE-2009-2906</a></td>
        <td><a href="/samba/security/CVE-2009-2906.html">Announcement</a></td>
    </tr>
    <tr>

    <tr>
        <td>01 Oct 2009</td>
        <td><a href="/samba/ftp/patches/security/samba-3.4.1-CVE-2009-2813.patch">
        patch for Samba 3.4.1</a><br />
        <a href="/samba/ftp/patches/security/samba-3.3.7-CVE-2009-2813.patch">
        patch for Samba 3.3.7</a><br />
        <a href="/samba/ftp/patches/security/samba-3.2.14-CVE-2009-2813.patch">
        patch for Samba 3.2.14</a><br />
        <a href="/samba/ftp/patches/security/samba-3.0.36-CVE-2009-2813.patch">
        patch for Samba 3.0.36</a><br />
        <td>Misconfigured /etc/passwd file may share folders unexpectedly</td>
        <td>&gt; 3.0.11</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2813">CVE-2009-2813</a></td>
        <td><a href="/samba/security/CVE-2009-2813.html">Announcement</a></td>
    </tr>
    <tr>

    <tr>
        <td>23 Jun 2009</td>
        <td><a href="/samba/ftp/patches/security/samba-3.3.5-CVE-2009-1888.patch">
        patch for Samba 3.3.5</a><br />
        <a href="/samba/ftp/patches/security/samba-3.2.12-CVE-2009-1888.patch">
        patch for Samba 3.2.12</a><br />
        <a href="/samba/ftp/patches/security/samba-3.0.34-CVE-2009-1888.patch">
        patch for Samba 3.0.34</a><br />
        <td>Uninitialized read of a data value</td>
        <td>Samba 3.0.31 - 3.3.5</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1888">CVE-2009-1888</a></td>
        <td><a href="/samba/security/CVE-2009-1888.html">Announcement</a></td>
    </tr>
    <tr>

    <tr>
        <td>23 Jun 2009</td>
        <td><a href="/samba/ftp/patches/security/samba-3.2.12-CVE-2009-1886.patch">
        patch for Samba 3.2.12</a>
        <td>Formatstring vulnerability in smbclient</td>
        <td>Samba 3.2.0 - 3.2.12</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1886">CVE-2009-1886</a></td>
        <td><a href="/samba/security/CVE-2009-1886.html">Announcement</a></td>
    </tr>
    <tr>

    <tr>
        <td>05 Jan 2009</td>
        <td><a href="/samba/ftp/patches/security/samba-3.2.6-CVE-2009-0022.patch">
        patch for Samba 3.2.6</a>
        <td>Potential access to "/" in setups with registry shares enabled</td>
        <td>Samba 3.2.0 - 3.2.6</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0022">CVE-2009-0022</a></td>
        <td><a href="/samba/security/CVE-2009-0022.html">Announcement</a></td>
    </tr>
    <tr>
        <td>27 Nov 2008</td>
        <td><a href="/samba/ftp/patches/security/samba-3.0.32-CVE-2008-4314.patch">
        patch for Samba 3.0.32</a>
        <a href="/samba/ftp/patches/security/samba-3.2.4-CVE-2008-4314.patch">
        patch for Samba 3.2.4</a></td>
        <td>Potential leak of arbitrary memory contents</td>
        <td>Samba 3.0.29 - 3.2.4</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4314">CVE-2008-4314</a></td>
        <td><a href="/samba/security/CVE-2008-4314.html">Announcement</a></td>
    </tr>

    <tr>
        <td>27 Aug 2008</td>
        <td><a href="/samba/ftp/patches/security/samba-3.2.2-CVE-2008-3789-1.patch">
        patch 1 for Samba 3.2.2</a> 
        <a href="/samba/ftp/patches/security/samba-3.2.2-CVE-2008-3789-2.patch">
        patch 2 for Samba 3.2.2</a></td>
        <td>Wrong permissions of group_mapping.ldb</td>
        <td>Samba 3.2.0 - 3.2.2</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3789">CVE-2008-3789</a></td>
        <td><a href="/samba/security/CVE-2008-3789.html">Announcement</a></td>
    </tr>

    <tr>
        <td>29 May 2008</td>
        <td><a href="/samba/ftp/patches/security/samba-3.0.29-CVE-2008-1105.patch">patch for Samba 3.0.29</a></td>
        <td>Boundary failure when parsing SMB responses</td>
        <td>Samba 3.0.0 - 3.0.29</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1105">CVE-2008-1105</a></td>
        <td><a href="/samba/security/CVE-2008-1105.html">Announcement</a></td>
    </tr>

    <tr>
        <td>10 Dec 2007</td>
        <td><a href="/samba/ftp/patches/security/samba-3.0.27a-CVE-2007-6015.patch">patch for Samba 3.0.27a</a></td>
        <td>Remote Code Execution in Samba's nmbd (send_mailslot())</td>
        <td>Samba 3.0.0 - 3.0.27a</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6015">CVE-2007-6015</a></td>
        <td><a href="/samba/security/CVE-2007-6015.html">Announcement</a></td>
    </tr>

    <tr>
        <td>15 Nov 2007</td>
        <td><a href="/samba/ftp/patches/security/samba-3.0.26a-CVE-2007-5398.patch">patch for Samba 3.0.26a</a></td>
        <td>Remote Code Execution in Samba's nmbd</td>
        <td>Samba 3.0.0 - 3.0.26a</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5398">CVE-2007-5398</a></td>
        <td><a href="/samba/security/CVE-2007-5398.html">Announcement</a></td>
    </tr>

    <tr>
        <td>15 Nov 2007</td>
        <td><a href="/samba/ftp/patches/security/samba-3.0.26a-CVE-2007-4572.patch">patch for Samba 3.0.26a</a></td>
        <td>GETDC mailslot processing buffer overrun in nmbd</td>
        <td>Samba 3.0.0 - 3.0.26a</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4572">CVE-2007-4572</a></td>
        <td><a href="/samba/security/CVE-2007-4572.html">Announcement</a></td>
    </tr>

    <tr>
        <td>11 Sep 2007</td>
        <td><a href="/samba/ftp/patches/security/samba-3.0.25-CVE-2007-4138.patch">patch for Samba 3.0.25</a></td>
        <td>Incorrect primary group assignment for users using the rfc2307 or sfu nss info plugin.</td>
        <td>Samba 3.0.25 - 3.0.25c</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4138">CVE-2007-4138</a></td>
        <td><a href="/samba/security/CVE-2007-4138.html">Announcement</a></td>
    </tr>

    <tr>
        <td>14 May 2007</td>
        <td><a href="/samba/ftp/patches/security/samba-3.0.24-CVE-2007-2447_v2.patch">patch for Samba 3.0.24</a></td>
        <td>Remote Command Injection Vulnerability (Updated June 5 to include missing &quot;c&quot; character from INCLUDE list).</td>
        <td>Samba 3.0.0 - 3.0.25rc3</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2447">CVE-2007-2447</a></td>
        <td><a href="/samba/security/CVE-2007-2447.html">Announcement</a></td>
    </tr>

    <tr>
        <td>14 May 2007</td>
        <td><a href="/samba/ftp/patches/security/samba-3.0.24-CVE-2007-2446_v2.patch">patch for Samba 3.0.24</a></td>
        <td>Multiple Heap Overflows Allow Remote Code Execution (Updated May 25 to fix regression in Samba domain controller logon code).</td>
        <td>Samba 3.0.0 - 3.0.25rc3</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2446">CVE-2007-2446</a></td>
        <td><a href="/samba/security/CVE-2007-2446.html">Announcement</a></td>
    </tr>

    <tr>
        <td>14 May 2007</td>
        <td><a href="/samba/ftp/patches/security/samba-3.0.24-CVE-2007-2444_v2.patch">patch for Samba 3.0.24</a></td>
        <td>Local SID/Name translation bug can result in user privilege elevation (Updated May 25 to fix regression in the &quot;force group&quot; parameter).</td>
        <td>Samba 3.0.23d - 3.0.25pre2</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2444">CVE-2007-2444</a></td>
        <td><a href="/samba/security/CVE-2007-2444.html">Announcement</a></td>
    </tr>

    <tr>
        <td>5 Feb 2007</td>
        <td><a href="/samba/ftp/patches/security/samba-3.0.23d-CVE-2007-0452.patch">patch for Samba 3.0.23d</a></td>
        <td>Potential Denial of Service bug in smbd</td>
        <td>Samba 3.0.6 - 3.0.23d</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0452">CVE-2007-0452</a></td>
        <td><a href="/samba/security/CVE-2007-0452.html">Announcement</a></td>
    </tr>

    <tr>
        <td>5 Feb 2007</td>
        <td><a href="/samba/ftp/patches/security/samba-3.0.23d-CVE-2007-0453.patch">patch for Samba 3.0.23d</a></td>
        <td>Buffer overrun in NSS host lookup Winbind library on Solaris</td>
        <td>Samba 3.0.21 - 3.0.23d</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0453">CVE-2007-0453</a></td>
        <td><a href="/samba/security/CVE-2007-0453.html">Announcement</a></td>
    </tr>

    <tr>
        <td>5 Feb 2007</td>
        <td><a href="/samba/ftp/patches/security/samba-3.0.23d-CVE-2007-0454.patch">patch for Samba 3.0.23d</a></td>
        <td>Format string bug in afsacl.so VFS plugin</td>
        <td>Samba 3.0.6 - 3.0.23d</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0454">CVE-2007-0454</a></td>
        <td><a href="/samba/security/CVE-2007-0454.html">Announcement</a></td>
    </tr>

    <tr>
        <td>10 July 2006</td>
        <td><a href="/samba/ftp/patches/security/samba-3.0-CVE-2006-3403.patch">patch for Samba 3.0.1 - 3.0.22</a></td>
        <td>Memory exhaustion DoS against smbd</td>
        <td>Samba 3.0.1 - 3.0.22</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3403">CVE-2006-3403</a></td>
        <td><a href="/samba/security/CVE-2006-3403.html">Announcement</a></td>
    </tr>

    <tr>
    <tr>
        <td>30 March 2006</td>
        <td><a href="/samba/ftp/patches/security/samba-3.0.21-CVE-2006-1059.patch">patch for Samba 3.0.21[a-c]</a></td>
        <td>Exposure of machine account credentials in winbind log files</td>
        <td>Samba 3.0.21 - 3.0.21c</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1059">CVE-2006-1059</a></td>
        <td><a href="/samba/security/CVE-2006-1059.html">Announcement</a></td>
    </tr>

    <tr>
        <td>16 December 2004</td>
        <td><a href="/samba/ftp/patches/security/samba-3.0.9-CVE-2004-1154.patch">patch for Samba 3.0.9</a></td>
        <td>Integer Overflow in security descriptor parsing</td>
        <td>Samba 2.x, 3.0.x &lt;&#61; 3.0.9</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1154">CVE-2004-1154</a></td>
        <td><a href="/samba/security/CVE-2004-1154.html">Announcement</a></td>
    </tr>    

    <tr>
    <tr>
        <td>15 November 2004</td>
        <td><a href="/samba/ftp/patches/security/samba-3.0.7-CVE-2004-0882.patch">patch for &lt;&#61;Samba 3.0.7</a></td>
        <td>Buffer Overrun in smbd</td>
        <td>Samba 3.0.x &lt;&#61; 3.0.7</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0882">CVE-2004-0882</a></td>
        <td><a href="/samba/security/CVE-2004-0882.html">Announcement</a></td>
    </tr>    

    <tr>
        <td>8 November 2004</td>
        <td><a href="/samba/ftp/patches/security/samba-3.0.7-CVE-2004-0930.patch">patch for &lt;&#61;Samba 3.0.7</a></td>
        <td>Remote DoS</td>
        <td>Samba 3.0.x &lt;&#61; 3.0.7</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0930">CVE-2004-0930</a></td>
        <td><a href="/samba/security/CVE-2004-0930.html">Announcement</a></td>
    </tr>    

    <tr>
        <td>30 September 2004</td>
        <td><a href="/samba/ftp/stable/samba-2.2.12.tar.gz">Samba 2.2.12</a> and/or  <a href="/samba/ftp/patches/security/samba-3.0.2a-reduce_name.patch">patch for &lt;&#61;Samba 3.0.2a</a></td>
        <td>Potential arbitrary file access</td>
        <td>Samba 2.2.x &lt;&#61;2.2.11 and Samba 3.0.x &lt;&#61;3.0.2a</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0815">CVE-2004-0815</a></td>
        <td><a href="/samba/security/CVE-2004-0815.html">Announcement</a></td>
    </tr>    
        
      
      <tr>
        <td>13 Sept 2004</td>
        <td><a href="/samba/ftp/patches/security/samba-3.0.5-DoS.patch">3.0.5 patch</a></td>
        <td>Two DoS bugs; one affecting smbd, the other nmbd.</td>
        <td>3.0.x &lt;= 3.0.6</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=2004-0807">CVE-2004-0807</a>, <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=2004-0808">CVE-2004-0808</a></td>
        <td><a href="/samba/security/CVE-2004-0807_CVE-2004-0808.html">Announcement</a></td>
      </tr>
      
      <tr>
        <td>22 Jul 2004</td>
        <td><a href="/samba/ftp/stable/samba-3.0.5.tar.gz">3.0.5</a></td>
        <td>Two potential buffer overruns</td>
        <td>>=3.0.2</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0600">CVE-2004-0600</a>, 
            <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0686">CVE-2004-0686</a>
        </td>
        <td><a href="/samba/security/CVE-2004-0600.html">CVE-2004-0600 Announcement</a>
            <a href="/samba/security/CVE-2004-0686.html">CVE-2004-0686 Announcement</a></td>
      </tr>
      
      <tr>
        <td>22 Jul 2004</td>
        <td><a href="/samba/ftp/stable/samba-2.2.10.tar.gz">2.2.10</a></td>
        <td>Buffer overrun in hash mangling method</td>
        <td>all 2.2 releases</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0686">CVE-2004-0686</a>
        </td>
        <td><a href="/samba/history/samba-2.2.10.html">release notes</a></td>
      </tr>
      
      <tr>
        <td>9 Feb 2004</td>
        <td><a href="/samba/ftp/old-versions/samba-3.0.2a.tar.gz">3.0.2a</a></td>
        <td align="left">Password initialization bug that could grant
        an attacker unauthorized
        access to a user account created by the mksmbpasswd.sh shell script.</td>
        <td>>=3.0.0</td>
        <td><a
        href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0082">CVE-2004-0082</a></td>
        <td><a href="/samba/security/CVE-2004-0082.html">Announcement</a></td>
      </tr>
      
      <tr>
        <td>7 Apr 2003</td>
        <td><a href="/samba/ftp/old-versions/samba-2.2.8a.tar.gz">2.2.8a</a></td>
        <td>Buffer overrun condition in the SMB/CIFS packet fragment
        re-assembly code.</td>
        <td>all 2.0 releases and <= 2.2.8</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0196">CVE-2003-0196</a>,
        <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0201">CVE-2003-0201</a></td>
        <td><a href="/samba/history/samba-2.2.8a.html">release notes</a></td>
      </tr>
      
      <tr>
        <td>10 Dec 2002</td>
        <td><a href="/samba/ftp/old-versions/samba-2.2.7a.tar.gz">2.2.7a</a></td>
        <td>Bug in the length checking for encrypted password change
        requests from clients.</td>
        <td>2.2.2 - 2.2.6</td>
        <td><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0085">CVE-2003-0085</a></td>
        <td><a href="/samba/history/samba-2.2.7a.html">release notes</a></td>
      </tr>
      
      <tr>
        <td>23 Jun 2001</td>
        <td><a href="/samba/ftp/old-versions/samba-2.2.0a.tar.gz">2.2.0a</a></td>
        <td>Bug in expansion of certain smb.conf variables such as 
        %m that could grant an attacker the capability to overwrite arbitrary 
        files on the server.  Bug that causes smbd not to honor the hosts allow 
        and deny smb.conf directives.</td>
        <td>2.2.0</td>
        <td>&nbsp</td>
        <td><a href="/samba/history/samba-2.2.0a.html">release notes</a></td>
      </tr>
      
      <tr>
        <td>23 Jun 2001</td>
        <td><a href="/samba/ftp/old-versions/samba-2.0.10.tar.gz">2.0.10</a></td>
        <td>Bug in the handling of temporary files that allows local 
        users to destroy data on local devices.</td>
        <td>>= 2.0.0</td>
        <td>&nbsp</td>
        <td><a href="/samba/history/samba-2.0.10.html">release notes</a></td>
      </tr>
                
    </table>
    
    <p><em>If you suspect you have discovered a serious security hole in a
Samba release, please send an email to <a
href="mailto:security@samba.org">security@samba.org</a>.</em></p>

<!--#include virtual="footer_history.html" -->