CVE-2017-12163: Infoleak
First published: Wed Sep 13 2017(Updated: )
All versions of Samba are vulnerable to a server memory information leak bug over SMB1 if a client can write data to a share. Some SMB1 write requests were not correctly range checked to ensure the client had sent enough data to fulfill the write, allowing server memory contents to be written into the file (or printer) instead of client supplied data. The client cannot control the area of the server memory that is written to the file (or printer).
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| debian/samba | 2:4.9.5+dfsg-5+deb10u3 2:4.9.5+dfsg-5+deb10u4 2:4.13.13+dfsg-1~deb11u5 2:4.17.11+dfsg-0+deb12u1 2:4.17.12+dfsg-0+deb12u1 2:4.19.1+dfsg-4 2:4.19.2+dfsg-1 | |
| Samba | <4.4.16 | |
| Samba | >=4.5.0<4.5.14 | |
| Samba | >=4.6.0<4.6.8 | |
| redhat enterprise Linux desktop | =6.0 | |
| redhat enterprise Linux desktop | =7.0 | |
| redhat enterprise Linux server | =6.0 | |
| redhat enterprise Linux server | =7.0 | |
| redhat enterprise Linux workstation | =6.0 | |
| redhat enterprise Linux workstation | =7.0 | |
| redhat gluster storage | =3.0 | |
| Red Hat Enterprise Linux | =6.0 | |
| Red Hat Enterprise Linux | =7.0 | |
| Debian GNU/Linux | =8.0 | |
| Debian GNU/Linux | =9.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.securityfocus.com/bid/100925
- http://www.securitytracker.com/id/1039401
- https://access.redhat.com/errata/RHSA-2017:2789
- https://access.redhat.com/errata/RHSA-2017:2790
- https://access.redhat.com/errata/RHSA-2017:2791
- https://access.redhat.com/errata/RHSA-2017:2858
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-12163
- https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbns03775en_us
- https://security.netapp.com/advisory/ntap-20170921-0001/
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03817en_us
- https://www.debian.org/security/2017/dsa-3983
- https://www.samba.org/samba/security/CVE-2017-12163.html
- https://www.synology.com/support/security/Synology_SA_17_57_Samba
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1493441
- https://bugzilla.redhat.com/show_bug.cgi?id=1491206
- https://security-tracker.debian.org/tracker/CVE-2017-12163
Frequently Asked Questions
What is the severity of CVE-2017-12163?
CVE-2017-12163 is rated as a medium severity vulnerability due to potential memory leak issues.
How do I fix CVE-2017-12163?
To fix CVE-2017-12163, upgrade Samba to a patched version that does not contain the vulnerability.
Which versions of Samba are affected by CVE-2017-12163?
All versions of Samba prior to 4.4.17, including certain versions up to 4.17.12, are affected by CVE-2017-12163.
What are the risks associated with CVE-2017-12163?
The risks of CVE-2017-12163 include the potential for unauthorized disclosure of server memory contents.
Can I disable SMB1 to mitigate CVE-2017-12163?
Disabling SMB1 can help mitigate the risks associated with CVE-2017-12163, but it is recommended to upgrade to a secure version of Samba.
- collector/security-tracker-debian
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2017-12163
- agent/first-publish-date
- agent/last-modified-date
- agent/type
- agent/remedy
- agent/weakness
- agent/author
- agent/severity
- agent/references
- agent/event
- agent/description
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- package-manager/debian
- vendor/samba
- canonical/samba
- version/samba/4.5.0
- version/samba/4.6.0
- vendor/redhat
- canonical/redhat enterprise linux desktop
- version/redhat enterprise linux desktop/6.0
- version/redhat enterprise linux desktop/7.0
- canonical/redhat enterprise linux server
- version/redhat enterprise linux server/6.0
- version/redhat enterprise linux server/7.0
- canonical/redhat enterprise linux workstation
- version/redhat enterprise linux workstation/6.0
- version/redhat enterprise linux workstation/7.0
- canonical/redhat gluster storage
- version/redhat gluster storage/3.0
- canonical/red hat enterprise linux
- version/red hat enterprise linux/6.0
- version/red hat enterprise linux/7.0
- vendor/debian
- canonical/debian gnu/linux
- version/debian gnu/linux/8.0
- version/debian gnu/linux/9.0