Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Fedora 33: FEDORA-2021-c87ed13391 Critical: cifs-utils Kerberos Auth Leak

fedora
Calendar Grey September 30, 2021
Dist Fedora Esm H88
CIFS Tools revised for Fedora 33 fixing kerberos authentication vulnerabilities and restoring mount operations affected by bugs.
Fix for CVE-2021-20208 Update to 6.13 cifs.upcall: fix regression in kerberos mount mount.cifs: fix crash when mount point does not exist ---- Fix for CVE-2021-20208: cifs.upcall k...

Summary

The SMB/CIFS protocol is a standard file sharing protocol widely deployed

on Microsoft Windows machines. This package contains tools for mounting

shares on Linux using the SMB/CIFS protocol. The tools in this package

work in conjunction with support in the kernel to allow one to mount a

SMB/CIFS share onto a client and use it as if it were a standard Linux

file system.

Fix for CVE-2021-20208 Update to 6.13 cifs.upcall: fix regression in kerberos

mount mount.cifs: fix crash when mount point does not exist ---- Fix for

CVE-2021-20208: cifs.upcall kerberos auth leak in container

* Thu Sep 23 2021 Bruno Wolff III - 6.13-3

- Actually use the patches

* Thu Sep 23 2021 Bruno Wolff III - 6.13-2

- Pull in a couple of upstream fixes slotted for the next release

- fix regression in kerberos mount

- fix crash when mount point does not exist

* Wed Sep 22 2021 Bruno Wolff III - 6.13-1

- Fix for CVE-2021-20208: cifs.upcall kerberos auth leak in container

- get/setcifsacl tools are improved to support changing owner, group and SACLs

* Wed Jul 21 2021 Fedora Release Engineering - 6.11-4

- Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild

* Tue Jan 26 2021 Fedora Release Engineering - 6.11-3

- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild

su -c 'dnf upgrade --advisory FEDORA-2021-c87ed13391' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/

Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure

Topics%20covered

Topics Covered

security advisory critical Fedora bug fix cifs-utils kerberos auth mount functionality

Change Log

References

Update Instructions

Severity
critical
Lowest
Low
Medium
High
Critical

Product: Fedora 33
Version: 6.13
Release: 3.fc33
URL:
Summary: Utilities for mounting and managing CIFS mounts

Topics%20covered

Topics Covered

security advisory critical Fedora bug fix cifs-utils kerberos auth mount functionality

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here