[ubuntu/noble-security] cifs-utils 2:7.0-2ubuntu0.2 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Mon Jun 16 11:22:56 UTC 2025
cifs-utils (2:7.0-2ubuntu0.2) noble-security; urgency=medium
* SECURITY REGRESSION: Fix memory leak in check_service_ticket_exists()
if a valid Kerberos service ticket is not available.
(LP: #2113906)
- d/p/lp2113906-cifs.upcall-fix-memory-leaks-in-check_service_ticket.patch
* SECURITY REGRESSION: Correctly search the calling applications
environment for KRB5CCNAME if running kernel is not patched for
CVE-2025-2312, fixing mounts for AD users. (LP: #2112614)
- d/p/CVE-2025-2312-3.patch: cifs.upcall: correctly treat
UPTARGET_UNSPECIFIED as UPTARGET_APP.
Date: 2025-06-13 11:23:15.424165+00:00
Changed-By: Matthew Ruffell <matthew.ruffell at canonical.com>
Signed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/cifs-utils/2:7.0-2ubuntu0.2
-------------- next part --------------
Sorry, changesfile not available.
More information about the noble-changes
mailing list