During my weekly check of Slackware 14.0 updates is this one copied here...
Although thiis listing is for slackware, puppies with SAMBA active should check into their update packages. Emphasis mine.
Fri Apr 15 20:37:37 UTC 2016
patches/packages/samba-4.2.11-i486-1_slack14.0.txz: Upgraded.
This update fixes the security issues known as "badlock" (or "sadlock"),
which may allow man-in-the-middle or denial-of-service attacks:
CVE-2015-5370 (Multiple errors in DCE-RPC code)
CVE-2016-2110 (Man in the middle attacks possible with NTLMSSP)
CVE-2016-2111 (NETLOGON Spoofing Vulnerability)
CVE-2016-2112 (LDAP client and server don't enforce integrity)
CVE-2016-2113 (Missing TLS certificate validation)
CVE-2016-2114 ("server signing = mandatory" not enforced)[
CVE-2016-2115 (SMB IPC traffic is not integrity protected)
CVE-2016-2118 (SAMR and LSA man in the middle attacks possible)
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cg ... -2015-5370
http://cve.mitre.org/cgi-bin/cvename.cg ... -2016-2110
http://cve.mitre.org/cgi-bin/cvename.cg ... -2016-2111
http://cve.mitre.org/cgi-bin/cvename.cg ... -2016-2112
http://cve.mitre.org/cgi-bin/cvename.cg ... -2016-2113
http://cve.mitre.org/cgi-bin/cvename.cg ... -2016-2114
http://cve.mitre.org/cgi-bin/cvename.cg ... -2016-2115
http://cve.mitre.org/cgi-bin/cvename.cg ... -2016-2118
(* Security fix *)
SAMBA update
SAMBA update
Linux user #498913 "Some people need to reimagine their thinking."
"Zuckerberg: a large city inhabited by mentally challenged people."
"Zuckerberg: a large city inhabited by mentally challenged people."