USN-7536-1 introduced a regression in cifs-utils.
Software Description:
- cifs-utils: Common Internet File System utilities
Details:
USN-7536-1 fixed vulnerabilities in cifs-utils. This update introduced a
regression in certain environments. This update fixes the problem.
We apologize for the inconvenience.
Original advisory details:
It was discovered that cifs-utils incorrectly handled namespaces when
obtaining Kerberos credentials. An attacker could possibly use this issue
to obtain sensitive information.
The problem can be corrected by updating your system to the following package versions: Ubuntu 25.04 cifs-utils 2:7.2-2ubuntu0.1 Ubuntu 24.10 cifs-utils 2:7.0-2.1ubuntu0.2 Ubuntu 24.04 LTS cifs-utils 2:7.0-2ubuntu0.2 Ubuntu 22.04 LTS cifs-utils 2:6.14-1ubuntu0.3 Ubuntu 20.04 LTS cifs-utils 2:6.9-1ubuntu0.4 In general, a standard system update will make all the necessary changes.
https://ubuntu.com/security/notices/USN-7536-2
https://ubuntu.com/security/notices/USN-7536-1
https://bugs.launchpad.net/ubuntu/+source/cifs-utils/+bug/2112614 https://bugs.launchpad.net/ubuntu/+source/cifs-utils/+bug/2113906
Get the latest Linux and open source security news straight to your inbox.