Explore top 10 tips to secure your open-source projects now. Read More
×
The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:. Oracle Linux Security Advisory ELSA-2026-22963 http://linux.oracle.com/errata/ELSA-2026-22963.html The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable LinuxNetwork: x86_64: ldb-tools-4.23.5-109.el10_2.x86_64.rpm libldb-4.23.5-109.el10_2.x86_64.rpm libldb-devel-4.23.5-109.el10_2.x86_64.rpm libnetapi-4.23.5-109.el10_2.x86_64.rpm libnetapi-devel-4.23.5-109.el10_2.x86_64.rpm libsmbclient-4.23.5-109.el10_2.x86_64.rpm libsmbclient-devel-4.23.5-109.el10_2.x86_64.rpm libwbclient-4.23.5-109.el10_2.x86_64.rpm libwbclient-devel-4.23.5-109.el10_2.x86_64.rpm python3-ldb-4.23.5-109.el10_2.x86_64.rpm python3-samba-4.23.5-109.el10_2.x86_64.rpm python3-samba-dc-4.23.5-109.el10_2.x86_64.rpm python3-samba-test-4.23.5-109.el10_2.x86_64.rpm samba-4.23.5-109.el10_2.x86_64.rpm samba-client-4.23.5-109.el10_2.x86_64.rpm samba-client-libs-4.23.5-109.el10_2.x86_64.rpm samba-common-4.23.5-109.el10_2.noarch.rpm samba-common-libs-4.23.5-109.el10_2.x86_64.rpm samba-common-tools-4.23.5-109.el10_2.x86_64.rpm samba-dc-libs-4.23.5-109.el10_2.x86_64.rpm samba-dcerpc-4.23.5-109.el10_2.x86_64.rpm samba-devel-4.23.5-109.el10_2.x86_64.rpm samba-gpupdate-4.23.5-109.el10_2.noarch.rpm samba-krb5-printing-4.23.5-109.el10_2.x86_64.rpm samba-ldb-ldap-modules-4.23.5-109.el10_2.x86_64.rpm samba-libs-4.23.5-109.el10_2.x86_64.rpm samba-pidl-4.23.5-109.el10_2.noarch.rpm samba-test-4.23.5-109.el10_2.x86_64.rpm samba-test-libs-4.23.5-109.el10_2.x86_64.rpm samba-tools-4.23.5-109.el10_2.x86_64.rpm samba-usershares-4.23.5-109.el10_2.noarch.rpm samba-vfs-iouring-4.23.5-109.el10_2.x86_64.rpm samba-winbind-4.23.5-109.el10_2.x86_64.rpm samba-winbind-clients-4.23.5-109.el10_2.x86_64.rpm samba-winbind-krb5-locator-4.23.5-109.el10_2.x86_64.rpm samba-winbind-modules-4.23.5-109.el10_2.x86_64.rpm samba-winexe-4.23.5-109.el10_2.x86_64.rpm aarch64: ldb-tools-4.23.5-109.el10_2.aarch64.rpm libldb-4.23.5-109.el10_2.aarch64.rpm libldb-devel-4.23.5-109.el10_2.aarch64.rpm libnetapi-4.23.5-109.el10_2.aarch64.rpm libnetapi-devel-4.23.5-109.el10_2.aarch64.rpm libsmbclient-4.23.5-109.el10_2.aarch64.rpm libsmbclient-devel-4.23.5-109.el10_2.aarch64.rpm libwbclient-4.23.5-109.el10_2.aarch64.rpm libwbclient-devel-4.23.5-109.el10_2.aarch64.rpm python3-ldb-4.23.5-109.el10_2.aarch64.rpm python3-samba-4.23.5-109.el10_2.aarch64.rpm python3-samba-dc-4.23.5-109.el10_2.aarch64.rpm python3-samba-test-4.23.5-109.el10_2.aarch64.rpm samba-4.23.5-109.el10_2.aarch64.rpm samba-client-4.23.5-109.el10_2.aarch64.rpm samba-client-libs-4.23.5-109.el10_2.aarch64.rpm samba-common-4.23.5-109.el10_2.noarch.rpm samba-common-libs-4.23.5-109.el10_2.aarch64.rpm samba-common-tools-4.23.5-109.el10_2.aarch64.rpm samba-dc-libs-4.23.5-109.el10_2.aarch64.rpm samba-dcerpc-4.23.5-109.el10_2.aarch64.rpm samba-devel-4.23.5-109.el10_2.aarch64.rpm samba-gpupdate-4.23.5-109.el10_2.noarch.rpm samba-krb5-printing-4.23.5-109.el10_2.aarch64.rpm samba-ldb-ldap-modules-4.23.5-109.el10_2.aarch64.rpm samba-libs-4.23.5-109.el10_2.aarch64.rpm samba-pidl-4.23.5-109.el10_2.noarch.rpm samba-test-4.23.5-109.el10_2.aarch64.rpm samba-test-libs-4.23.5-109.el10_2.aarch64.rpm samba-tools-4.23.5-109.el10_2.aarch64.rpm samba-usershares-4.23.5-109.el10_2.noarch.rpm samba-vfs-iouring-4.23.5-109.el10_2.aarch64.rpm samba-winbind-4.23.5-109.el10_2.aarch64.rpm samba-winbind-clients-4.23.5-109.el10_2.aarch64.rpm samba-winbind-krb5-locator-4.23.5-109.el10_2.aarch64.rpm samba-winbind-modules-4.23.5-109.el10_2.aarch64.rpm SRPMS: http://oss.oracle.com/ol10/SRPMS-updates/samba-4.23.5-109.el10_2.src.rpm Related CVEs: CVE-2026-1933 CVE-2026-2340 CVE-2026-3012 CVE-2026-4408 CVE-2026-4480 CVE-2026-40170 Description of changes: [0:4.23.5-109] - Bump build number [0:4.23.5-108] - Security release for CVE-2026-1933 CVE-2026-2340 CVE-2026-3012 CVE-2026-4480 CVE-2026-40170 CVE-2026-4408 - resolves: RHEL-156279 - CVE-2026-1933 CVE-2026-2340 CVE-2026-3012 samba: various flaws - resolves: RHEL-161644 - CVE-2026-4480 - Fix Samba printing - resolves: RHEL-170595 - CVE-2026-40170 - Update bundled ngtcp2 - resolves: RHEL-166871 - Add stack protection with FORTIFY_SOURCE _______________________________________________ El-errata mailing list
Moderate: samba security, bug fix, and enhancement update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2023:7139", "synopsis": "Moderate: samba security, bug fix, and enhancement update", "severity": "SEVERITY_MODERATE", "topic": "An update is available for openchange, evolution-mapi.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Samba is an open-source implementation of the Server Message Block (SMB) protocol and the related Common Internet File System (CIFS) protocol, which allow PC-compatible machines to share files, printers, and various information.\n\nThe following packages have been upgraded to a later upstream version: samba (4.18.6). (BZ#2190417)\n\nSecurity Fix(es):\n\n* samba: out-of-bounds read in winbind AUTH_CRAP (CVE-2022-2127)\n\n* samba: infinite loop in mdssvc RPC service for spotlight (CVE-2023-34966)\n\n* samba: type confusion in mdssvc RPC service for spotlight (CVE-2023-34967)\n\n* samba: spotlight server-side share path disclosure (CVE-2023-34968)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Rocky Linux 8.9 Release Notes linked from the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2222791", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2222791", "description": ""}, {"ticket": "2222793", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2222793", "description": ""}, {"ticket": "2222794", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2222794", "description": ""}, {"ticket": "2222795", "sourceBy": "Red Hat", "sourceLink":"https://bugzilla.redhat.com/show_bug.cgi?id=2222795", "description": ""}], "cves": [{"name": "CVE-2022-2127", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2127", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "5.9", "cwe": "CWE-125"}, {"name": "CVE-2023-34966", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-34966", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-835"}, {"name": "CVE-2023-34967", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-34967", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "cvss3BaseScore": "5.3", "cwe": "CWE-843"}, {"name": "CVE-2023-34968", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-34968", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "cvss3BaseScore": "5.3", "cwe": "CWE-201"}], "references": [], "publishedAt": "2026-06-25T12:01:05.792943Z", "rpms": {"Rocky Linux 8": {"nvras": ["evolution-mapi-0:3.28.3-8.el8.aarch64.rpm", "evolution-mapi-0:3.28.3-8.el8.src.rpm", "evolution-mapi-0:3.28.3-8.el8.x86_64.rpm", "evolution-mapi-debuginfo-0:3.28.3-8.el8.aarch64.rpm", "evolution-mapi-debuginfo-0:3.28.3-8.el8.x86_64.rpm", "evolution-mapi-debugsource-0:3.28.3-8.el8.aarch64.rpm", "evolution-mapi-debugsource-0:3.28.3-8.el8.x86_64.rpm", "evolution-mapi-langpacks-0:3.28.3-8.el8.noarch.rpm", "openchange-0:2.3-32.el8.aarch64.rpm", "openchange-0:2.3-32.el8.i686.rpm", "openchange-0:2.3-32.el8.src.rpm", "openchange-0:2.3-32.el8.x86_64.rpm", "openchange-debuginfo-0:2.3-32.el8.aarch64.rpm", "openchange-debuginfo-0:2.3-32.el8.i686.rpm", "openchange-debuginfo-0:2.3-32.el8.x86_64.rpm", "openchange-debugsource-0:2.3-32.el8.aarch64.rpm", "openchange-debugsource-0:2.3-32.el8.i686.rpm", "openchange-debugsource-0:2.3-32.el8.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}.Updates available for samba in Rocky Linux include critical bug fixes and enhancements addressing several security issues.. samba security fix, Rocky Linux update, security advisory, samba vulnerabilities, open-source software. . Severity: Important. LinuxSecurity.com Team
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:. Oracle Linux Security Advisory ELSA-2026-25049 http://linux.oracle.com/errata/ELSA-2026-25049.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable LinuxNetwork: x86_64: ldb-tools-4.23.5-10.el9_8.x86_64.rpm libldb-4.23.5-10.el9_8.i686.rpm libldb-4.23.5-10.el9_8.x86_64.rpm libldb-devel-4.23.5-10.el9_8.i686.rpm libldb-devel-4.23.5-10.el9_8.x86_64.rpm libnetapi-4.23.5-10.el9_8.i686.rpm libnetapi-4.23.5-10.el9_8.x86_64.rpm libnetapi-devel-4.23.5-10.el9_8.i686.rpm libnetapi-devel-4.23.5-10.el9_8.x86_64.rpm libsmbclient-4.23.5-10.el9_8.i686.rpm libsmbclient-4.23.5-10.el9_8.x86_64.rpm libsmbclient-devel-4.23.5-10.el9_8.i686.rpm libsmbclient-devel-4.23.5-10.el9_8.x86_64.rpm libwbclient-4.23.5-10.el9_8.i686.rpm libwbclient-4.23.5-10.el9_8.x86_64.rpm libwbclient-devel-4.23.5-10.el9_8.i686.rpm libwbclient-devel-4.23.5-10.el9_8.x86_64.rpm python3-ldb-4.23.5-10.el9_8.i686.rpm python3-ldb-4.23.5-10.el9_8.x86_64.rpm python3-samba-4.23.5-10.el9_8.i686.rpm python3-samba-4.23.5-10.el9_8.x86_64.rpm python3-samba-dc-4.23.5-10.el9_8.x86_64.rpm python3-samba-test-4.23.5-10.el9_8.x86_64.rpm samba-4.23.5-10.el9_8.x86_64.rpm samba-client-4.23.5-10.el9_8.x86_64.rpm samba-client-libs-4.23.5-10.el9_8.i686.rpm samba-client-libs-4.23.5-10.el9_8.x86_64.rpm samba-common-4.23.5-10.el9_8.noarch.rpm samba-common-libs-4.23.5-10.el9_8.i686.rpm samba-common-libs-4.23.5-10.el9_8.x86_64.rpm samba-common-tools-4.23.5-10.el9_8.x86_64.rpm samba-dc-libs-4.23.5-10.el9_8.i686.rpm samba-dc-libs-4.23.5-10.el9_8.x86_64.rpm samba-dcerpc-4.23.5-10.el9_8.x86_64.rpm samba-devel-4.23.5-10.el9_8.i686.rpm samba-devel-4.23.5-10.el9_8.x86_64.rpm samba-gpupdate-4.23.5-10.el9_8.noarch.rpm samba-krb5-printing-4.23.5-10.el9_8.x86_64.rpm samba-ldb-ldap-modules-4.23.5-10.el9_8.x86_64.rpm samba-libs-4.23.5-10.el9_8.i686.rpm samba-libs-4.23.5-10.el9_8.x86_64.rpm samba-pidl-4.23.5-10.el9_8.noarch.rpm samba-test-4.23.5-10.el9_8.x86_64.rpm samba-test-libs-4.23.5-10.el9_8.x86_64.rpm samba-tools-4.23.5-10.el9_8.x86_64.rpm samba-usershares-4.23.5-10.el9_8.noarch.rpm samba-vfs-iouring-4.23.5-10.el9_8.x86_64.rpm samba-winbind-4.23.5-10.el9_8.x86_64.rpm samba-winbind-clients-4.23.5-10.el9_8.x86_64.rpm samba-winbind-krb5-locator-4.23.5-10.el9_8.x86_64.rpm samba-winbind-modules-4.23.5-10.el9_8.i686.rpm samba-winbind-modules-4.23.5-10.el9_8.x86_64.rpm samba-winexe-4.23.5-10.el9_8.x86_64.rpm aarch64: ldb-tools-4.23.5-10.el9_8.aarch64.rpm libldb-4.23.5-10.el9_8.aarch64.rpm libldb-devel-4.23.5-10.el9_8.aarch64.rpm libnetapi-4.23.5-10.el9_8.aarch64.rpm libnetapi-devel-4.23.5-10.el9_8.aarch64.rpm libsmbclient-4.23.5-10.el9_8.aarch64.rpm libsmbclient-devel-4.23.5-10.el9_8.aarch64.rpm libwbclient-4.23.5-10.el9_8.aarch64.rpm libwbclient-devel-4.23.5-10.el9_8.aarch64.rpm python3-ldb-4.23.5-10.el9_8.aarch64.rpm python3-samba-4.23.5-10.el9_8.aarch64.rpm python3-samba-dc-4.23.5-10.el9_8.aarch64.rpm python3-samba-test-4.23.5-10.el9_8.aarch64.rpm samba-4.23.5-10.el9_8.aarch64.rpm samba-client-4.23.5-10.el9_8.aarch64.rpm samba-client-libs-4.23.5-10.el9_8.aarch64.rpm samba-common-4.23.5-10.el9_8.noarch.rpm samba-common-libs-4.23.5-10.el9_8.aarch64.rpm samba-common-tools-4.23.5-10.el9_8.aarch64.rpm samba-dc-libs-4.23.5-10.el9_8.aarch64.rpm samba-dcerpc-4.23.5-10.el9_8.aarch64.rpm samba-devel-4.23.5-10.el9_8.aarch64.rpm samba-gpupdate-4.23.5-10.el9_8.noarch.rpm samba-krb5-printing-4.23.5-10.el9_8.aarch64.rpm samba-ldb-ldap-modules-4.23.5-10.el9_8.aarch64.rpm samba-libs-4.23.5-10.el9_8.aarch64.rpm samba-pidl-4.23.5-10.el9_8.noarch.rpm samba-test-4.23.5-10.el9_8.aarch64.rpm samba-test-libs-4.23.5-10.el9_8.aarch64.rpm samba-tools-4.23.5-10.el9_8.aarch64.rpm samba-usershares-4.23.5-10.el9_8.noarch.rpm samba-vfs-iouring-4.23.5-10.el9_8.aarch64.rpm samba-winbind-4.23.5-10.el9_8.aarch64.rpm samba-winbind-clients-4.23.5-10.el9_8.aarch64.rpm samba-winbind-krb5-locator-4.23.5-10.el9_8.aarch64.rpm samba-winbind-modules-4.23.5-10.el9_8.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates/samba-4.23.5-10.el9_8.src.rpm Related CVEs: CVE-2026-1933 CVE-2026-2340 CVE-2026-3012 CVE-2026-4408 CVE-2026-4480 CVE-2026-40170 Description of changes: [0:4.23.5-10] - Bump build number [0:4.23.5-9] - Security release for CVE-2026-1933 CVE-2026-2340 CVE-2026-3012 CVE-2026-4480 CVE-2026-40170 CVE-2026-4408 - resolves: RHEL-156319 - CVE-2026-1933 CVE-2026-2340 CVE-2026-3012 samba: various flaws - resolves: RHEL-161657 - CVE-2026-4480 - Fix Samba printing - resolves: RHEL-170597 - CVE-2026-40170 - Update bundled ngtcp2 - resolves: RHEL-166868 - Add stack protection with FORTIFY_SOURCE _______________________________________________ El-errata mailing list
An update that solves six vulnerabilities and has five fixes can now be installed.. # Security update for samba Announcement ID: SUSE-SU-2026:22080-1 Release Date: 2026-06-05T08:45:16Z Rating: critical References: * bsc#1249058 * bsc#1255755 * bsc#1257200 * bsc#1259050 * bsc#1259667 * bsc#1261158 * bsc#1261159 * bsc#1261160 * bsc#1261161 * bsc#1261163 * bsc#1261188 Cross-References: * CVE-2026-1933 * CVE-2026-2340 * CVE-2026-3012 * CVE-2026-3238 * CVE-2026-4408 * CVE-2026-4480 CVSS scores: * CVE-2026-1933 ( SUSE ): 7.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-1933 ( SUSE ): 7.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-1933 ( NVD ): 7.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-1933 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2026-2340 ( SUSE ): 7.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-2340 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2026-2340 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2026-3012 ( SUSE ): 7.6 CVSS:4.0/AV:A/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-3012 ( SUSE ): 8.0 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N * CVE-2026-3012 ( NVD ): 6.8 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-3012 ( NVD ): 8.0 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N * CVE-2026-3238 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-3238 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-4408 ( SUSE ): 9.4 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H * CVE-2026-4408 ( SUSE ): 9.9 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-4408 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-4408 ( NVD ): 9.0 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H * CVE-2026-4480 ( SUSE ): 10.0 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H * CVE-2026-4480 ( SUSE ): 10.0 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H * CVE-2026-4480 ( NVD ): 9.0 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H * CVE-2026-4480 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP applications 16.0 An update that solves six vulnerabilities and has five fixes can now be installed. ## Description: This update for samba fixes the following issues Security issues: * CVE-2026-1933: Missing access check on reparse point operations (bsc#1261188). * CVE-2026-2340: vfs_worm does not block directory modification (bsc#1261158). * CVE-2026-3012: group policy certificate enrollment uses http: // without validation (bsc#1261159). * CVE-2026-3238: unauthenticated udp packet crashes AD DC nbt server (bsc#1261160). * CVE-2026-4408: Remote Code Execution in SAMR (bsc#1261163). * CVE-2026-4480: Unauthenticated Remote Code Execution (bsc#1261161). Changes for samba: * network:samba:STABLE/samba: "use-kerberos=desired" broken / Dolphin requires login for Samba shares (bsc#1255755). * Samba service start times out (SElinux relabel takes too long) (bsc#1259050). * samba-ad-dc-libs packages is missing a DLZ plugin for bind 9.20 (bsc#1249058). * VFS_Snapper does not show previous file versions in subdirectories. (bsc#1259667). * Updated to 4.22.9 ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-890=1 * SUSE Linux Enterprise Server for SAP applications 16.0 zypper in -t patch SUSE-SLES-16.0-890=1 ## Package List: * SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le s390x x86_64) *samba-client-libs-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-dcerpc-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-ad-dc-libs-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-ldb-ldap-4.22.9+git.506.22c03ce0781-160000.1.1 * ldb-tools-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-libs-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * python3-ldb-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-ad-dc-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-debugsource-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-python3-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-gpupdate-4.22.9+git.506.22c03ce0781-160000.1.1 * ctdb-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * libldb2-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-winbind-libs-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-client-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-python3-4.22.9+git.506.22c03ce0781-160000.1.1 * python3-ldb-4.22.9+git.506.22c03ce0781-160000.1.1 * ctdb-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-client-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-devel-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-libs-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-ad-dc-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-ad-dc-libs-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-libs-python3-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-dcerpc-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-dsdb-modules-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-libs-python3-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * libldb2-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-winbind-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-winbind-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-winbind-libs-4.22.9+git.506.22c03ce0781-160000.1.1 *samba-ldb-ldap-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-dsdb-modules-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * ctdb-pcp-pmda-4.22.9+git.506.22c03ce0781-160000.1.1 * ldb-tools-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * ctdb-pcp-pmda-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-tool-4.22.9+git.506.22c03ce0781-160000.1.1 * libldb-devel-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-client-libs-4.22.9+git.506.22c03ce0781-160000.1.1 * SUSE Linux Enterprise Server 16.0 (noarch) * samba-doc-4.22.9+git.506.22c03ce0781-160000.1.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (ppc64le x86_64) * samba-client-libs-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-dcerpc-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-ad-dc-libs-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-ldb-ldap-4.22.9+git.506.22c03ce0781-160000.1.1 * ldb-tools-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-libs-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * python3-ldb-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-ad-dc-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-debugsource-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-python3-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-gpupdate-4.22.9+git.506.22c03ce0781-160000.1.1 * ctdb-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * libldb2-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-winbind-libs-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-client-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-python3-4.22.9+git.506.22c03ce0781-160000.1.1 * python3-ldb-4.22.9+git.506.22c03ce0781-160000.1.1 * ctdb-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-client-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-devel-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-libs-4.22.9+git.506.22c03ce0781-160000.1.1 *samba-ad-dc-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-ad-dc-libs-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-dcerpc-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-dsdb-modules-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-libs-python3-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-libs-python3-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * libldb2-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-winbind-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-winbind-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-winbind-libs-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-ldb-ldap-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-dsdb-modules-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * ctdb-pcp-pmda-4.22.9+git.506.22c03ce0781-160000.1.1 * ldb-tools-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * ctdb-pcp-pmda-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-tool-4.22.9+git.506.22c03ce0781-160000.1.1 * libldb-devel-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-client-libs-4.22.9+git.506.22c03ce0781-160000.1.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (noarch) * samba-doc-4.22.9+git.506.22c03ce0781-160000.1.1 ## References: * https://www.suse.com/security/cve/CVE-2026-1933.html * https://www.suse.com/security/cve/CVE-2026-2340.html * https://www.suse.com/security/cve/CVE-2026-3012.html * https://www.suse.com/security/cve/CVE-2026-3238.html * https://www.suse.com/security/cve/CVE-2026-4408.html * https://www.suse.com/security/cve/CVE-2026-4480.html * https://bugzilla.suse.com/show_bug.cgi?id=1249058 * https://bugzilla.suse.com/show_bug.cgi?id=1255755 * https://bugzilla.suse.com/show_bug.cgi?id=1257200 * https://bugzilla.suse.com/show_bug.cgi?id=1259050 * https://bugzilla.suse.com/show_bug.cgi?id=1259667 * https://bugzilla.suse.com/show_bug.cgi?id=1261158 * https://bugzilla.suse.com/show_bug.cgi?id=1261159 *https://bugzilla.suse.com/show_bug.cgi?id=1261160 * https://bugzilla.suse.com/show_bug.cgi?id=1261161 * https://bugzilla.suse.com/show_bug.cgi?id=1261163 * https://bugzilla.suse.com/show_bug.cgi?id=1261188 . Critical security update resolves six issues in Samba, highly recommended for installation on SUSE servers.. SUSE Samba Security Patch Remote Code Execution. . Severity: Critical. LinuxSecurity.com Team
Several security issues were fixed in Samba.. ========================================================================== Ubuntu Security Notice USN-8306-2 June 10, 2026 samba vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 20.04 LTS Summary: Several security issues were fixed in Samba. Software Description: - samba: SMB/CIFS file, print, and login server for Unix Details: USN-8306-1 fixed vulnerabilities in Samba. This update provides the corresponding updates for CVE-2026-3238, CVE-2026-4408, and CVE-2026-4480 in Ubuntu 20.04 LTS. Original advisory details: Asim Viladi Oglu Manizada discovered that Samba incorrectly handled access checks on reparse point operations. An attacker could possibly use this issue to modify reparse point extended attributes on files that should have been read-only. This issue only affected Ubuntu 25.10 and Ubuntu 26.04 LTS. (CVE-2026-1933) Pavel Kohout discovered that Samba's vfs_worm module did not properly block file overwrites. An attacker could possibly use this issue to overwrite files that should have remained immutable. (CVE-2026-2340) Arad Inbar, Nir Somech, and Ben Grinberg discovered that Samba incorrectly handled certificate auto-enrolment group policies over HTTP without verification. A machine-in-the-middle attacker could possibly use this issue to install a malicious CA certificate. This issue only affected Ubuntu 24.04 LTS, Ubuntu 25.10, and Ubuntu 26.04 LTS. (CVE-2026-3012) Arad Inbar, Erez Cohen, Nir Somech, and Ben Grinberg discovered that Samba's Active Directory Domain Controller WINS server could be made to crash under certain circumstances. A remote attacker could possibly use this issue to cause a denial of service. (CVE-2026-3238) Ron Ben Yizhak discovered that Samba's DCE/RPC SAMR server incorrectly handled a non-default password check script configuration. A remote attacker could possibly use this issueto execute arbitrary code. (CVE-2026-4408) Ron Ben Yizhak discovered that Samba's printing subsystem incorrectly handled a non-default print command configuration. A remote attacker could possibly use this issue to execute arbitrary code. (CVE-2026-4480) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 20.04 LTS ctdb 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2 Available with Ubuntu Pro libnss-winbind 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2 Available with Ubuntu Pro libpam-winbind 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2 Available with Ubuntu Pro libsmbclient 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2 Available with Ubuntu Pro libsmbclient-dev 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2 Available with Ubuntu Pro libwbclient-dev 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2 Available with Ubuntu Pro libwbclient0 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2 Available with Ubuntu Pro python3-samba 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2 Available with Ubuntu Pro registry-tools 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2 Available with Ubuntu Pro samba 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2 Available with Ubuntu Pro samba-common 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2 Available with Ubuntu Pro samba-common-bin 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2 Available with Ubuntu Pro samba-dev 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2 Available with Ubuntu Pro samba-dsdb-modules 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2 Available with Ubuntu Pro samba-libs 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2 Available with Ubuntu Pro samba-vfs-modules 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2 Available with Ubuntu Pro smbclient 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2 Available with Ubuntu Pro winbind 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2 Available with Ubuntu Pro In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-8306-2 https://ubuntu.com/security/notices/USN-8306-1 CVE-2026-3238, CVE-2026-4408, CVE-2026-4480 . Multiple security issues in Samba for Ubuntu 20.04 require immediate updates to prevent exploitation and system compromise.. Ubuntu Samba security update issues vulnerabilities patch. . Severity: Critical. LinuxSecurity.com Team
An update that solves six vulnerabilities and has five fixes can now be installed.. # Security update for samba Announcement ID: SUSE-SU-2026:22045-1 Release Date: 2026-06-05T08:34:04Z Rating: critical References: * bsc#1249058 * bsc#1255755 * bsc#1257200 * bsc#1259050 * bsc#1259667 * bsc#1261158 * bsc#1261159 * bsc#1261160 * bsc#1261161 * bsc#1261163 * bsc#1261188 Cross-References: * CVE-2026-1933 * CVE-2026-2340 * CVE-2026-3012 * CVE-2026-3238 * CVE-2026-4408 * CVE-2026-4480 CVSS scores: * CVE-2026-1933 ( SUSE ): 7.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-1933 ( SUSE ): 7.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-1933 ( NVD ): 7.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-1933 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2026-2340 ( SUSE ): 7.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-2340 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2026-2340 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2026-3012 ( SUSE ): 7.6 CVSS:4.0/AV:A/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-3012 ( SUSE ): 8.0 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N * CVE-2026-3012 ( NVD ): 6.8 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-3012 ( NVD ): 8.0 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N * CVE-2026-3238 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-3238 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-4408 ( SUSE ): 9.4 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H * CVE-2026-4408 ( SUSE ): 9.9 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-4408 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-4408 ( NVD ): 9.0 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H * CVE-2026-4480 ( SUSE ): 10.0 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H * CVE-2026-4480 ( SUSE ): 10.0 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H * CVE-2026-4480 ( NVD ): 9.0 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H * CVE-2026-4480 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Micro 6.2 An update that solves six vulnerabilities and has five fixes can now be installed. ## Description: This update for samba fixes the following issues Security issues: * CVE-2026-1933: Missing access check on reparse point operations (bsc#1261188). * CVE-2026-2340: vfs_worm does not block directory modification (bsc#1261158). * CVE-2026-3012: group policy certificate enrollment uses http: // without validation (bsc#1261159). * CVE-2026-3238: unauthenticated udp packet crashes AD DC nbt server (bsc#1261160). * CVE-2026-4408: Remote Code Execution in SAMR (bsc#1261163). * CVE-2026-4480: Unauthenticated Remote Code Execution (bsc#1261161). Changes for samba: * network:samba:STABLE/samba: "use-kerberos=desired" broken / Dolphin requires login for Samba shares (bsc#1255755). * Samba service start times out (SElinux relabel takes too long) (bsc#1259050). * samba-ad-dc-libs packages is missing a DLZ plugin for bind 9.20 (bsc#1249058). * VFS_Snapper does not show previous file versions in subdirectories. (bsc#1259667). * Updated to 4.22.9 ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.2 zypper in -t patch SUSE-SL-Micro-6.2-890=1 ## Package List: * SUSE Linux Micro 6.2 (aarch64 ppc64le s390x x86_64) * samba-client-libs-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-debugsource-4.22.9+git.506.22c03ce0781-160000.1.1 * libldb2-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 *libldb2-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-client-libs-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 ## References: * https://www.suse.com/security/cve/CVE-2026-1933.html * https://www.suse.com/security/cve/CVE-2026-2340.html * https://www.suse.com/security/cve/CVE-2026-3012.html * https://www.suse.com/security/cve/CVE-2026-3238.html * https://www.suse.com/security/cve/CVE-2026-4408.html * https://www.suse.com/security/cve/CVE-2026-4480.html * https://bugzilla.suse.com/show_bug.cgi?id=1249058 * https://bugzilla.suse.com/show_bug.cgi?id=1255755 * https://bugzilla.suse.com/show_bug.cgi?id=1257200 * https://bugzilla.suse.com/show_bug.cgi?id=1259050 * https://bugzilla.suse.com/show_bug.cgi?id=1259667 * https://bugzilla.suse.com/show_bug.cgi?id=1261158 * https://bugzilla.suse.com/show_bug.cgi?id=1261159 * https://bugzilla.suse.com/show_bug.cgi?id=1261160 * https://bugzilla.suse.com/show_bug.cgi?id=1261161 * https://bugzilla.suse.com/show_bug.cgi?id=1261163 * https://bugzilla.suse.com/show_bug.cgi?id=1261188 . Critical Samba update for SUSE addresses multiple issues including remote code execution threats and installation instructions.. SUSE Samba Security Patch Critical Update Remote Code Execution. . Severity: Critical. LinuxSecurity.com Team
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:. Oracle Linux Security Advisory ELSA-2026-22644 http://linux.oracle.com/errata/ELSA-2026-22644.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable LinuxNetwork: x86_64: ctdb-4.19.4-16.0.1.el8_10.x86_64.rpm libnetapi-4.19.4-16.0.1.el8_10.i686.rpm libnetapi-4.19.4-16.0.1.el8_10.x86_64.rpm libnetapi-devel-4.19.4-16.0.1.el8_10.i686.rpm libnetapi-devel-4.19.4-16.0.1.el8_10.x86_64.rpm libsmbclient-4.19.4-16.0.1.el8_10.i686.rpm libsmbclient-4.19.4-16.0.1.el8_10.x86_64.rpm libsmbclient-devel-4.19.4-16.0.1.el8_10.i686.rpm libsmbclient-devel-4.19.4-16.0.1.el8_10.x86_64.rpm libwbclient-4.19.4-16.0.1.el8_10.i686.rpm libwbclient-4.19.4-16.0.1.el8_10.x86_64.rpm libwbclient-devel-4.19.4-16.0.1.el8_10.i686.rpm libwbclient-devel-4.19.4-16.0.1.el8_10.x86_64.rpm python3-samba-4.19.4-16.0.1.el8_10.i686.rpm python3-samba-4.19.4-16.0.1.el8_10.x86_64.rpm python3-samba-dc-4.19.4-16.0.1.el8_10.x86_64.rpm python3-samba-devel-4.19.4-16.0.1.el8_10.i686.rpm python3-samba-devel-4.19.4-16.0.1.el8_10.x86_64.rpm python3-samba-test-4.19.4-16.0.1.el8_10.x86_64.rpm samba-4.19.4-16.0.1.el8_10.x86_64.rpm samba-client-4.19.4-16.0.1.el8_10.x86_64.rpm samba-client-libs-4.19.4-16.0.1.el8_10.i686.rpm samba-client-libs-4.19.4-16.0.1.el8_10.x86_64.rpm samba-common-4.19.4-16.0.1.el8_10.noarch.rpm samba-common-libs-4.19.4-16.0.1.el8_10.i686.rpm samba-common-libs-4.19.4-16.0.1.el8_10.x86_64.rpm samba-common-tools-4.19.4-16.0.1.el8_10.x86_64.rpm samba-dc-libs-4.19.4-16.0.1.el8_10.i686.rpm samba-dc-libs-4.19.4-16.0.1.el8_10.x86_64.rpm samba-dcerpc-4.19.4-16.0.1.el8_10.x86_64.rpm samba-devel-4.19.4-16.0.1.el8_10.i686.rpm samba-devel-4.19.4-16.0.1.el8_10.x86_64.rpm samba-krb5-printing-4.19.4-16.0.1.el8_10.x86_64.rpm samba-ldb-ldap-modules-4.19.4-16.0.1.el8_10.x86_64.rpm samba-libs-4.19.4-16.0.1.el8_10.i686.rpm samba-libs-4.19.4-16.0.1.el8_10.x86_64.rpm samba-pidl-4.19.4-16.0.1.el8_10.noarch.rpm samba-test-4.19.4-16.0.1.el8_10.x86_64.rpm samba-test-libs-4.19.4-16.0.1.el8_10.x86_64.rpm samba-tools-4.19.4-16.0.1.el8_10.x86_64.rpm samba-usershares-4.19.4-16.0.1.el8_10.x86_64.rpm samba-vfs-glusterfs-4.19.4-16.0.1.el8_10.x86_64.rpm samba-vfs-iouring-4.19.4-16.0.1.el8_10.x86_64.rpm samba-winbind-4.19.4-16.0.1.el8_10.x86_64.rpm samba-winbind-clients-4.19.4-16.0.1.el8_10.x86_64.rpm samba-winbind-krb5-locator-4.19.4-16.0.1.el8_10.x86_64.rpm samba-winbind-modules-4.19.4-16.0.1.el8_10.i686.rpm samba-winbind-modules-4.19.4-16.0.1.el8_10.x86_64.rpm samba-winexe-4.19.4-16.0.1.el8_10.x86_64.rpm aarch64: ctdb-4.19.4-16.0.1.el8_10.aarch64.rpm libnetapi-4.19.4-16.0.1.el8_10.aarch64.rpm libnetapi-devel-4.19.4-16.0.1.el8_10.aarch64.rpm libsmbclient-4.19.4-16.0.1.el8_10.aarch64.rpm libsmbclient-devel-4.19.4-16.0.1.el8_10.aarch64.rpm libwbclient-4.19.4-16.0.1.el8_10.aarch64.rpm libwbclient-devel-4.19.4-16.0.1.el8_10.aarch64.rpm python3-samba-4.19.4-16.0.1.el8_10.aarch64.rpm python3-samba-dc-4.19.4-16.0.1.el8_10.aarch64.rpm python3-samba-devel-4.19.4-16.0.1.el8_10.aarch64.rpm python3-samba-test-4.19.4-16.0.1.el8_10.aarch64.rpm samba-4.19.4-16.0.1.el8_10.aarch64.rpm samba-client-4.19.4-16.0.1.el8_10.aarch64.rpm samba-client-libs-4.19.4-16.0.1.el8_10.aarch64.rpm samba-common-4.19.4-16.0.1.el8_10.noarch.rpm samba-common-libs-4.19.4-16.0.1.el8_10.aarch64.rpm samba-common-tools-4.19.4-16.0.1.el8_10.aarch64.rpm samba-dc-libs-4.19.4-16.0.1.el8_10.aarch64.rpm samba-dcerpc-4.19.4-16.0.1.el8_10.aarch64.rpm samba-devel-4.19.4-16.0.1.el8_10.aarch64.rpm samba-krb5-printing-4.19.4-16.0.1.el8_10.aarch64.rpm samba-ldb-ldap-modules-4.19.4-16.0.1.el8_10.aarch64.rpm samba-libs-4.19.4-16.0.1.el8_10.aarch64.rpm samba-pidl-4.19.4-16.0.1.el8_10.noarch.rpm samba-test-4.19.4-16.0.1.el8_10.aarch64.rpm samba-test-libs-4.19.4-16.0.1.el8_10.aarch64.rpm samba-tools-4.19.4-16.0.1.el8_10.aarch64.rpm samba-usershares-4.19.4-16.0.1.el8_10.aarch64.rpm samba-vfs-glusterfs-4.19.4-16.0.1.el8_10.aarch64.rpm samba-vfs-iouring-4.19.4-16.0.1.el8_10.aarch64.rpm samba-winbind-4.19.4-16.0.1.el8_10.aarch64.rpm samba-winbind-clients-4.19.4-16.0.1.el8_10.aarch64.rpm samba-winbind-krb5-locator-4.19.4-16.0.1.el8_10.aarch64.rpm samba-winbind-modules-4.19.4-16.0.1.el8_10.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates/samba-4.19.4-16.0.1.el8_10.src.rpm RelatedCVEs: CVE-2026-3012 CVE-2026-4408 CVE-2026-4480 Description of changes: [4.19.4-16.0.1] - s3: winbindd: winbindd_pam: fix leak in extract_pac_vrfy_sigs [Orabug: 36518285] - s3:passdb: Do not leak memory in pdb_tdb [Orabug: 36371377] - Gluster volumes not accessible via Samba due to missing samba-vfs-glusterfs in OL8 [Orabug: 30205755] [4.19.4-16] - resolves: RHEL-156322 - Fix CVE-2026-3012 - resolves: RHEL-161647 - Fix CVE-2026-4480 - resolves: RHEL-177933 - Fix CVE-2026-4408 - resolves: RHEL-166866 - Build hardening, stack protection with FORTIFY_SOURCE _______________________________________________ El-errata mailing list
New samba packages are available for Slackware 15.0 to fix security issues.. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 [slackware-security] samba (SSA:2026-158-01) New samba packages are available for Slackware 15.0 to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: +--------------------------+ extra/samba-4.22.10-i586-1_slack15.0.txz: Upgraded. This is a security release in order to address the following defects: Missing access checks on reparse point operations. WORM vfs module does not block overwrites. auto-enrolment GPO installing CA certificate over http without verification. Denial of service against AD DC WINS server. Unauthenticated Remote Code Execution in Samba DCE/RPC SAMR server. Unauthenticated Remote Code Execution in Samba printing subsystem. For more information, see: https://www.samba.org/samba/security/CVE-2026-1933.html https://www.samba.org/samba/security/CVE-2026-2340.html https://www.samba.org/samba/security/CVE-2026-3012.html https://www.samba.org/samba/security/CVE-2026-3238.html https://www.samba.org/samba/security/CVE-2026-4408.html https://www.samba.org/samba/security/CVE-2026-4480.html https://www.cve.org/CVERecord?id=CVE-2026-1933 https://www.cve.org/CVERecord?id=CVE-2026-2340 https://www.cve.org/CVERecord?id=CVE-2026-3012 https://www.cve.org/CVERecord?id=CVE-2026-3238 https://www.cve.org/CVERecord?id=CVE-2026-4408 https://www.cve.org/CVERecord?id=CVE-2026-4480 (* Security fix *) +--------------------------+ Where to find the new packages: +-----------------------------+ Thanks to the friendly folks at the OSU Open Source Lab (http://osuosl.org) for donating FTP and rsync hosting to the Slackware project! :-) Also see the "Get Slack" section on http://slackware.com for additional mirror sites near you. Updated package for Slackware 15.0: ftp://ftp.slackware.com/pub/slackware/slackware-15.0/extra/samba-4.22.10-i586-1_slack15.0.txz Updated package for Slackware x86_6415.0: ftp://ftp.slackware.com/pub/slackware/slackware64-15.0/extra/samba-4.22.10-x86_64-1_slack15.0.txz MD5 signatures: +-------------+ Slackware 15.0 package: 74437119c84e65f40ff2d1074fc71080 samba-4.22.10-i586-1_slack15.0.txz Slackware x86_64 15.0 package: 55fc2128809e2e0ab6a9fe31014525e7 samba-4.22.10-x86_64-1_slack15.0.txz Installation instructions: +------------------------+ Upgrade the package as root: # upgradepkg samba-4.22.10-i586-1_slack15.0.txz Then, if Samba is running restart it: # /etc/rc.d/rc.samba restart +-----+ . Samba packages for Slackware 15.0 resolve multiple critical security issues, including remote code execution and DoS.. Samba Security Fix, Slackware Update, Remote Code Execution, Denial of Service, Samba Advisory. . Severity: Critical. LinuxSecurity.com Team
Get the latest Linux and open source security news straight to your inbox.