[ubuntu/focal-updates] cifs-utils 2:6.9-1ubuntu0.3 (Accepted)
Ubuntu Archive Robot
ubuntu-archive-robot at lists.canonical.com
Tue May 27 17:58:33 UTC 2025
cifs-utils (2:6.9-1ubuntu0.3) focal-security; urgency=medium
* Skip checking the Kerberos TGT if a valid service ticket
is available. (LP: #2099917)
- d/p/lp2099917-cifs-utils-Skip-TGT-check-if-valid-service.patch
* SECURITY UPDATE: namespace confusion may lead to disclosing
sensitive data from host Kerberos credentials cache. (LP: #2099914)
- d/p/CVE-2025-2312-1.patch: CIFS.upcall to accomodate new
namespace mount opt.
- d/p/CVE-2025-2312-2.patch: cifs-utils: add documentation
for upcall_target.
- CVE-2025-2312
Date: 2025-05-15 07:46:20.278704+00:00
Changed-By: Matthew Ruffell <matthew.ruffell at canonical.com>
Signed-By: Ubuntu Archive Robot <ubuntu-archive-robot at lists.canonical.com>
https://launchpad.net/ubuntu/+source/cifs-utils/2:6.9-1ubuntu0.3
-------------- next part --------------
Sorry, changesfile not available.
More information about the Focal-changes
mailing list