VDB

ALPINE-CVE-2017-12163

ALPINE-CVE-2017-12163 PUBLISHED CVSS 7.099999904632568 HIGH

An information leak flaw was found in the way SMB1 protocol was implemented by Samba before 4.4.16, 4.5.x before 4.5.14, and 4.6.x before 4.6.8. A malicious client could use this flaw to dump server memory contents to a file on the samba share or to a shared printer, though the exact area of server memory cannot be controlled by the attacker.

Risk Scores

CVSS v3.0
7.099999904632568
CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N

Affected Products

VendorProductVersions
Alpine:v3.7samba3.5.6-r3, 4.6.6-r1, 4.6.6-r0
Alpine:v3.13samba4.2.0-r1, 3.6.6-r0, 3.6.5-r0
Alpine:v3.12samba4.6.6-r1, 4.1.9-r0, 4.1.8-r0
Alpine:v3.17samba4.2.0-r1, 4.2.0-r0, 4.1.9-r0
Alpine:v3.22samba4.4.3-r0, 4.6.6-r1, 4.6.6-r0
Alpine:v3.15samba3.4.3-r0, 3.5.6-r4, 3.5.8-r0
Alpine:v3.4samba4.1.3-r2, 4.1.3-r1, 4.1.3-r0
Alpine:v3.10samba4.4.2-r0, 4.6.6-r1, 4.6.6-r0
Alpine:v3.19samba3.4.5-r1, 0, 4.6.6-r1
Alpine:v3.16samba4.1.8-r0, 0, 3.2.10-r0
Alpine:v3.11samba3.2.10-r0, 4.2.1-r0, 4.2.0-r1
Alpine:v3.6samba3.2.10-r0, 3.2.11-r0, 3.2.11-r1
Alpine:v3.5samba3.5.6-r3, 0, 3.2.10-r0
Alpine:v3.23samba3.5.6-r0, 3.5.6-r1, 3.5.6-r2
Alpine:v3.8samba0, 4.6.6-r1, 4.6.6-r0
Alpine:v3.21samba3.6.1-r1, 0, 3.2.10-r0
Alpine:v3.18samba3.2.10-r0, 3.2.11-r1, 3.2.8-r0
Alpine:v3.9samba0, 3.2.10-r0, 3.2.11-r0
Alpine:v3.14samba3.3.5-r0, 3.2.11-r1, 3.2.11-r0
Alpine:v3.20samba4.6.6-r1, 3.2.10-r0, 3.2.8-r0

Timeline

  • Jul 26, 2018 CVE Published
  • Dec 3, 2025 CVE Updated
  • Apr 30, 2026 Distribution Patch

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›