Alpine: libsmbclient, pam-winbind, multiple samba packages: security update to 4.1.16-r0 (deprecated)

critical Tenable Self-Hosted Container Security Plugin ID 401169

Description

There are packages installed that are affected by a vulnerability referenced in the following CVE:

- The Netlogon server implementation in smbd in Samba 3.5.x and 3.6.x before 3.6.25, 4.0.x before 4.0.25,
4.1.x before 4.1.17, and 4.2.x before 4.2.0rc5 performs a free operation on an uninitialized stack
pointer, which allows remote attackers to execute arbitrary code via crafted Netlogon packets that use the
ServerPasswordSet RPC API, as demonstrated by packets reaching the _netr_ServerPasswordSet function in
rpc_server/netlogon/srv_netlog_nt.c. (CVE-2015-0240)

See Also

https://git.alpinelinux.org/aports/commit/?id=5081db3bd29cc89e3da0872d37c654d1ea670738

https://git.alpinelinux.org/aports/commit/?id=ba43f61ebc02c9b84721d768504622c4ec2bf8f0

Plugin Details

Severity: Critical

ID: 401169

Version: Revision 1.26

Type: Local

Published: 8/16/2023

Updated: 7/2/2026

Supported Sensors: Agentless Assessment, Tenable Cloud Security, Tenable Self-Hosted Container Security

Risk Information

VPR

Risk Factor: High

Score: 7.9

Percentile: 99.36

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 8.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2015-0240

CVSS v3

Risk Factor: Critical

Base Score: 9.8

Temporal Score: 9.4

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:H/RL:O/RC:C

Vulnerability Information

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2/24/2015

Vulnerability Publication Date: 2/23/2015

Reference Information

CVE: CVE-2015-0240

BID: 72711

IAVA: 2015-A-0042-S