[Pkg-samba-maint] Bug#868209: CVE-2017-11103: MitM attack, impersonation of the Kerberos client, known as Orpheus Lyre

Raphael Hertzog hertzog at debian.org
Thu Jul 13 05:14:56 UTC 2017

Source: samba
Severity: grave
Tags: security patch
Version: 2:4.1.11+dfsg-1


the following vulnerability was published for samba (due to its embedded
copy of heimdal). I checked the build logs for unstable and apparently it
does use this copy (I don't know the status for older releases).

CVE-2017-11103[0]: MitM attack, impersonation of the Kerberos client, know as Orpheus Lyre

A dedicated website is here:

The samba announce and patch are here:

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2017-11103

Please adjust the affected versions in the BTS as needed.

Raphaël Hertzog ◈ Debian Developer

Support Debian LTS: https://www.freexian.com/services/debian-lts.html
Learn to master Debian: https://debian-handbook.info/get/

More information about the Pkg-samba-maint mailing list