Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 524
Alerts This Week
Warning Icon 1 524

Stay Secure with the Latest Linux Advisories

Filter%20icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 754 articles for you...
217

Oracle Samba Critical Security Advisory ELSA-2026-22963

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:. Oracle Linux Security Advisory ELSA-2026-22963 http://linux.oracle.com/errata/ELSA-2026-22963.html The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable LinuxNetwork: x86_64: ldb-tools-4.23.5-109.el10_2.x86_64.rpm libldb-4.23.5-109.el10_2.x86_64.rpm libldb-devel-4.23.5-109.el10_2.x86_64.rpm libnetapi-4.23.5-109.el10_2.x86_64.rpm libnetapi-devel-4.23.5-109.el10_2.x86_64.rpm libsmbclient-4.23.5-109.el10_2.x86_64.rpm libsmbclient-devel-4.23.5-109.el10_2.x86_64.rpm libwbclient-4.23.5-109.el10_2.x86_64.rpm libwbclient-devel-4.23.5-109.el10_2.x86_64.rpm python3-ldb-4.23.5-109.el10_2.x86_64.rpm python3-samba-4.23.5-109.el10_2.x86_64.rpm python3-samba-dc-4.23.5-109.el10_2.x86_64.rpm python3-samba-test-4.23.5-109.el10_2.x86_64.rpm samba-4.23.5-109.el10_2.x86_64.rpm samba-client-4.23.5-109.el10_2.x86_64.rpm samba-client-libs-4.23.5-109.el10_2.x86_64.rpm samba-common-4.23.5-109.el10_2.noarch.rpm samba-common-libs-4.23.5-109.el10_2.x86_64.rpm samba-common-tools-4.23.5-109.el10_2.x86_64.rpm samba-dc-libs-4.23.5-109.el10_2.x86_64.rpm samba-dcerpc-4.23.5-109.el10_2.x86_64.rpm samba-devel-4.23.5-109.el10_2.x86_64.rpm samba-gpupdate-4.23.5-109.el10_2.noarch.rpm samba-krb5-printing-4.23.5-109.el10_2.x86_64.rpm samba-ldb-ldap-modules-4.23.5-109.el10_2.x86_64.rpm samba-libs-4.23.5-109.el10_2.x86_64.rpm samba-pidl-4.23.5-109.el10_2.noarch.rpm samba-test-4.23.5-109.el10_2.x86_64.rpm samba-test-libs-4.23.5-109.el10_2.x86_64.rpm samba-tools-4.23.5-109.el10_2.x86_64.rpm samba-usershares-4.23.5-109.el10_2.noarch.rpm samba-vfs-iouring-4.23.5-109.el10_2.x86_64.rpm samba-winbind-4.23.5-109.el10_2.x86_64.rpm samba-winbind-clients-4.23.5-109.el10_2.x86_64.rpm samba-winbind-krb5-locator-4.23.5-109.el10_2.x86_64.rpm samba-winbind-modules-4.23.5-109.el10_2.x86_64.rpm samba-winexe-4.23.5-109.el10_2.x86_64.rpm aarch64: ldb-tools-4.23.5-109.el10_2.aarch64.rpm libldb-4.23.5-109.el10_2.aarch64.rpm libldb-devel-4.23.5-109.el10_2.aarch64.rpm libnetapi-4.23.5-109.el10_2.aarch64.rpm libnetapi-devel-4.23.5-109.el10_2.aarch64.rpm libsmbclient-4.23.5-109.el10_2.aarch64.rpm libsmbclient-devel-4.23.5-109.el10_2.aarch64.rpm libwbclient-4.23.5-109.el10_2.aarch64.rpm libwbclient-devel-4.23.5-109.el10_2.aarch64.rpm python3-ldb-4.23.5-109.el10_2.aarch64.rpm python3-samba-4.23.5-109.el10_2.aarch64.rpm python3-samba-dc-4.23.5-109.el10_2.aarch64.rpm python3-samba-test-4.23.5-109.el10_2.aarch64.rpm samba-4.23.5-109.el10_2.aarch64.rpm samba-client-4.23.5-109.el10_2.aarch64.rpm samba-client-libs-4.23.5-109.el10_2.aarch64.rpm samba-common-4.23.5-109.el10_2.noarch.rpm samba-common-libs-4.23.5-109.el10_2.aarch64.rpm samba-common-tools-4.23.5-109.el10_2.aarch64.rpm samba-dc-libs-4.23.5-109.el10_2.aarch64.rpm samba-dcerpc-4.23.5-109.el10_2.aarch64.rpm samba-devel-4.23.5-109.el10_2.aarch64.rpm samba-gpupdate-4.23.5-109.el10_2.noarch.rpm samba-krb5-printing-4.23.5-109.el10_2.aarch64.rpm samba-ldb-ldap-modules-4.23.5-109.el10_2.aarch64.rpm samba-libs-4.23.5-109.el10_2.aarch64.rpm samba-pidl-4.23.5-109.el10_2.noarch.rpm samba-test-4.23.5-109.el10_2.aarch64.rpm samba-test-libs-4.23.5-109.el10_2.aarch64.rpm samba-tools-4.23.5-109.el10_2.aarch64.rpm samba-usershares-4.23.5-109.el10_2.noarch.rpm samba-vfs-iouring-4.23.5-109.el10_2.aarch64.rpm samba-winbind-4.23.5-109.el10_2.aarch64.rpm samba-winbind-clients-4.23.5-109.el10_2.aarch64.rpm samba-winbind-krb5-locator-4.23.5-109.el10_2.aarch64.rpm samba-winbind-modules-4.23.5-109.el10_2.aarch64.rpm SRPMS: http://oss.oracle.com/ol10/SRPMS-updates/samba-4.23.5-109.el10_2.src.rpm Related CVEs: CVE-2026-1933 CVE-2026-2340 CVE-2026-3012 CVE-2026-4408 CVE-2026-4480 CVE-2026-40170 Description of changes: [0:4.23.5-109] - Bump build number [0:4.23.5-108] - Security release for CVE-2026-1933 CVE-2026-2340 CVE-2026-3012 CVE-2026-4480 CVE-2026-40170 CVE-2026-4408 - resolves: RHEL-156279 - CVE-2026-1933 CVE-2026-2340 CVE-2026-3012 samba: various flaws - resolves: RHEL-161644 - CVE-2026-4480 - Fix Samba printing - resolves: RHEL-170595 - CVE-2026-40170 - Update bundled ngtcp2 - resolves: RHEL-166871 - Add stack protection with FORTIFY_SOURCE _______________________________________________ El-errata mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://oss.oracle.com/mailman/listinfo/el-errata .Oracle Linux 10 receives a critical advisory for Samba, addressing multiple security issues. Immediate updates recommended.. Oracle Linux,Samba,Security Advisory,Samba Update. . Severity: Critical. LinuxSecurity.com Team

Calendar%202 Jul 17, 2026 Critical Oracle
219

Rocky Linux 8 Samba Important Fixes for CVE-2022-2127 CVE-2023-34966

Moderate: samba security, bug fix, and enhancement update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2023:7139", "synopsis": "Moderate: samba security, bug fix, and enhancement update", "severity": "SEVERITY_MODERATE", "topic": "An update is available for openchange, evolution-mapi.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Samba is an open-source implementation of the Server Message Block (SMB) protocol and the related Common Internet File System (CIFS) protocol, which allow PC-compatible machines to share files, printers, and various information.\n\nThe following packages have been upgraded to a later upstream version: samba (4.18.6). (BZ#2190417)\n\nSecurity Fix(es):\n\n* samba: out-of-bounds read in winbind AUTH_CRAP (CVE-2022-2127)\n\n* samba: infinite loop in mdssvc RPC service for spotlight (CVE-2023-34966)\n\n* samba: type confusion in mdssvc RPC service for spotlight (CVE-2023-34967)\n\n* samba: spotlight server-side share path disclosure (CVE-2023-34968)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Rocky Linux 8.9 Release Notes linked from the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2222791", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2222791", "description": ""}, {"ticket": "2222793", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2222793", "description": ""}, {"ticket": "2222794", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2222794", "description": ""}, {"ticket": "2222795", "sourceBy": "Red Hat", "sourceLink":"https://bugzilla.redhat.com/show_bug.cgi?id=2222795", "description": ""}], "cves": [{"name": "CVE-2022-2127", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2127", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "5.9", "cwe": "CWE-125"}, {"name": "CVE-2023-34966", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-34966", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-835"}, {"name": "CVE-2023-34967", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-34967", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "cvss3BaseScore": "5.3", "cwe": "CWE-843"}, {"name": "CVE-2023-34968", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-34968", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "cvss3BaseScore": "5.3", "cwe": "CWE-201"}], "references": [], "publishedAt": "2026-06-25T12:01:05.792943Z", "rpms": {"Rocky Linux 8": {"nvras": ["evolution-mapi-0:3.28.3-8.el8.aarch64.rpm", "evolution-mapi-0:3.28.3-8.el8.src.rpm", "evolution-mapi-0:3.28.3-8.el8.x86_64.rpm", "evolution-mapi-debuginfo-0:3.28.3-8.el8.aarch64.rpm", "evolution-mapi-debuginfo-0:3.28.3-8.el8.x86_64.rpm", "evolution-mapi-debugsource-0:3.28.3-8.el8.aarch64.rpm", "evolution-mapi-debugsource-0:3.28.3-8.el8.x86_64.rpm", "evolution-mapi-langpacks-0:3.28.3-8.el8.noarch.rpm", "openchange-0:2.3-32.el8.aarch64.rpm", "openchange-0:2.3-32.el8.i686.rpm", "openchange-0:2.3-32.el8.src.rpm", "openchange-0:2.3-32.el8.x86_64.rpm", "openchange-debuginfo-0:2.3-32.el8.aarch64.rpm", "openchange-debuginfo-0:2.3-32.el8.i686.rpm", "openchange-debuginfo-0:2.3-32.el8.x86_64.rpm", "openchange-debugsource-0:2.3-32.el8.aarch64.rpm", "openchange-debugsource-0:2.3-32.el8.i686.rpm", "openchange-debugsource-0:2.3-32.el8.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}.Updates available for samba in Rocky Linux include critical bug fixes and enhancements addressing several security issues.. samba security fix, Rocky Linux update, security advisory, samba vulnerabilities, open-source software. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Jun 25, 2026 Important Rocky Linux
217

Oracle Linux 9 Samba Critical Risk Advisory ELSA-2026-25049

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:. Oracle Linux Security Advisory ELSA-2026-25049 http://linux.oracle.com/errata/ELSA-2026-25049.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable LinuxNetwork: x86_64: ldb-tools-4.23.5-10.el9_8.x86_64.rpm libldb-4.23.5-10.el9_8.i686.rpm libldb-4.23.5-10.el9_8.x86_64.rpm libldb-devel-4.23.5-10.el9_8.i686.rpm libldb-devel-4.23.5-10.el9_8.x86_64.rpm libnetapi-4.23.5-10.el9_8.i686.rpm libnetapi-4.23.5-10.el9_8.x86_64.rpm libnetapi-devel-4.23.5-10.el9_8.i686.rpm libnetapi-devel-4.23.5-10.el9_8.x86_64.rpm libsmbclient-4.23.5-10.el9_8.i686.rpm libsmbclient-4.23.5-10.el9_8.x86_64.rpm libsmbclient-devel-4.23.5-10.el9_8.i686.rpm libsmbclient-devel-4.23.5-10.el9_8.x86_64.rpm libwbclient-4.23.5-10.el9_8.i686.rpm libwbclient-4.23.5-10.el9_8.x86_64.rpm libwbclient-devel-4.23.5-10.el9_8.i686.rpm libwbclient-devel-4.23.5-10.el9_8.x86_64.rpm python3-ldb-4.23.5-10.el9_8.i686.rpm python3-ldb-4.23.5-10.el9_8.x86_64.rpm python3-samba-4.23.5-10.el9_8.i686.rpm python3-samba-4.23.5-10.el9_8.x86_64.rpm python3-samba-dc-4.23.5-10.el9_8.x86_64.rpm python3-samba-test-4.23.5-10.el9_8.x86_64.rpm samba-4.23.5-10.el9_8.x86_64.rpm samba-client-4.23.5-10.el9_8.x86_64.rpm samba-client-libs-4.23.5-10.el9_8.i686.rpm samba-client-libs-4.23.5-10.el9_8.x86_64.rpm samba-common-4.23.5-10.el9_8.noarch.rpm samba-common-libs-4.23.5-10.el9_8.i686.rpm samba-common-libs-4.23.5-10.el9_8.x86_64.rpm samba-common-tools-4.23.5-10.el9_8.x86_64.rpm samba-dc-libs-4.23.5-10.el9_8.i686.rpm samba-dc-libs-4.23.5-10.el9_8.x86_64.rpm samba-dcerpc-4.23.5-10.el9_8.x86_64.rpm samba-devel-4.23.5-10.el9_8.i686.rpm samba-devel-4.23.5-10.el9_8.x86_64.rpm samba-gpupdate-4.23.5-10.el9_8.noarch.rpm samba-krb5-printing-4.23.5-10.el9_8.x86_64.rpm samba-ldb-ldap-modules-4.23.5-10.el9_8.x86_64.rpm samba-libs-4.23.5-10.el9_8.i686.rpm samba-libs-4.23.5-10.el9_8.x86_64.rpm samba-pidl-4.23.5-10.el9_8.noarch.rpm samba-test-4.23.5-10.el9_8.x86_64.rpm samba-test-libs-4.23.5-10.el9_8.x86_64.rpm samba-tools-4.23.5-10.el9_8.x86_64.rpm samba-usershares-4.23.5-10.el9_8.noarch.rpm samba-vfs-iouring-4.23.5-10.el9_8.x86_64.rpm samba-winbind-4.23.5-10.el9_8.x86_64.rpm samba-winbind-clients-4.23.5-10.el9_8.x86_64.rpm samba-winbind-krb5-locator-4.23.5-10.el9_8.x86_64.rpm samba-winbind-modules-4.23.5-10.el9_8.i686.rpm samba-winbind-modules-4.23.5-10.el9_8.x86_64.rpm samba-winexe-4.23.5-10.el9_8.x86_64.rpm aarch64: ldb-tools-4.23.5-10.el9_8.aarch64.rpm libldb-4.23.5-10.el9_8.aarch64.rpm libldb-devel-4.23.5-10.el9_8.aarch64.rpm libnetapi-4.23.5-10.el9_8.aarch64.rpm libnetapi-devel-4.23.5-10.el9_8.aarch64.rpm libsmbclient-4.23.5-10.el9_8.aarch64.rpm libsmbclient-devel-4.23.5-10.el9_8.aarch64.rpm libwbclient-4.23.5-10.el9_8.aarch64.rpm libwbclient-devel-4.23.5-10.el9_8.aarch64.rpm python3-ldb-4.23.5-10.el9_8.aarch64.rpm python3-samba-4.23.5-10.el9_8.aarch64.rpm python3-samba-dc-4.23.5-10.el9_8.aarch64.rpm python3-samba-test-4.23.5-10.el9_8.aarch64.rpm samba-4.23.5-10.el9_8.aarch64.rpm samba-client-4.23.5-10.el9_8.aarch64.rpm samba-client-libs-4.23.5-10.el9_8.aarch64.rpm samba-common-4.23.5-10.el9_8.noarch.rpm samba-common-libs-4.23.5-10.el9_8.aarch64.rpm samba-common-tools-4.23.5-10.el9_8.aarch64.rpm samba-dc-libs-4.23.5-10.el9_8.aarch64.rpm samba-dcerpc-4.23.5-10.el9_8.aarch64.rpm samba-devel-4.23.5-10.el9_8.aarch64.rpm samba-gpupdate-4.23.5-10.el9_8.noarch.rpm samba-krb5-printing-4.23.5-10.el9_8.aarch64.rpm samba-ldb-ldap-modules-4.23.5-10.el9_8.aarch64.rpm samba-libs-4.23.5-10.el9_8.aarch64.rpm samba-pidl-4.23.5-10.el9_8.noarch.rpm samba-test-4.23.5-10.el9_8.aarch64.rpm samba-test-libs-4.23.5-10.el9_8.aarch64.rpm samba-tools-4.23.5-10.el9_8.aarch64.rpm samba-usershares-4.23.5-10.el9_8.noarch.rpm samba-vfs-iouring-4.23.5-10.el9_8.aarch64.rpm samba-winbind-4.23.5-10.el9_8.aarch64.rpm samba-winbind-clients-4.23.5-10.el9_8.aarch64.rpm samba-winbind-krb5-locator-4.23.5-10.el9_8.aarch64.rpm samba-winbind-modules-4.23.5-10.el9_8.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates/samba-4.23.5-10.el9_8.src.rpm Related CVEs: CVE-2026-1933 CVE-2026-2340 CVE-2026-3012 CVE-2026-4408 CVE-2026-4480 CVE-2026-40170 Description of changes: [0:4.23.5-10] - Bump build number [0:4.23.5-9] - Security release for CVE-2026-1933 CVE-2026-2340 CVE-2026-3012 CVE-2026-4480 CVE-2026-40170 CVE-2026-4408 - resolves: RHEL-156319 - CVE-2026-1933 CVE-2026-2340 CVE-2026-3012 samba: various flaws - resolves: RHEL-161657 - CVE-2026-4480 - Fix Samba printing - resolves: RHEL-170597 - CVE-2026-40170 - Update bundled ngtcp2 - resolves: RHEL-166868 - Add stack protection with FORTIFY_SOURCE _______________________________________________ El-errata mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://oss.oracle.com/mailman/listinfo/el-errata . Stay updated with Oracle Linux advisory ELSA-2026-25049 for critical samba risks requiring immediate attention.. oracle linux samba security critical update. . Severity: Critical. LinuxSecurity.com Team

Calendar%202 Jun 25, 2026 Critical Oracle
100

SUSE Samba Urgent Security Patch CVE-2026-4480 2026-22080-1

An update that solves six vulnerabilities and has five fixes can now be installed.. # Security update for samba Announcement ID: SUSE-SU-2026:22080-1 Release Date: 2026-06-05T08:45:16Z Rating: critical References: * bsc#1249058 * bsc#1255755 * bsc#1257200 * bsc#1259050 * bsc#1259667 * bsc#1261158 * bsc#1261159 * bsc#1261160 * bsc#1261161 * bsc#1261163 * bsc#1261188 Cross-References: * CVE-2026-1933 * CVE-2026-2340 * CVE-2026-3012 * CVE-2026-3238 * CVE-2026-4408 * CVE-2026-4480 CVSS scores: * CVE-2026-1933 ( SUSE ): 7.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-1933 ( SUSE ): 7.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-1933 ( NVD ): 7.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-1933 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2026-2340 ( SUSE ): 7.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-2340 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2026-2340 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2026-3012 ( SUSE ): 7.6 CVSS:4.0/AV:A/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-3012 ( SUSE ): 8.0 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N * CVE-2026-3012 ( NVD ): 6.8 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-3012 ( NVD ): 8.0 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N * CVE-2026-3238 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-3238 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-4408 ( SUSE ): 9.4 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H * CVE-2026-4408 ( SUSE ): 9.9 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-4408 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-4408 ( NVD ): 9.0 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H * CVE-2026-4480 ( SUSE ): 10.0 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H * CVE-2026-4480 ( SUSE ): 10.0 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H * CVE-2026-4480 ( NVD ): 9.0 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H * CVE-2026-4480 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP applications 16.0 An update that solves six vulnerabilities and has five fixes can now be installed. ## Description: This update for samba fixes the following issues Security issues: * CVE-2026-1933: Missing access check on reparse point operations (bsc#1261188). * CVE-2026-2340: vfs_worm does not block directory modification (bsc#1261158). * CVE-2026-3012: group policy certificate enrollment uses http: // without validation (bsc#1261159). * CVE-2026-3238: unauthenticated udp packet crashes AD DC nbt server (bsc#1261160). * CVE-2026-4408: Remote Code Execution in SAMR (bsc#1261163). * CVE-2026-4480: Unauthenticated Remote Code Execution (bsc#1261161). Changes for samba: * network:samba:STABLE/samba: "use-kerberos=desired" broken / Dolphin requires login for Samba shares (bsc#1255755). * Samba service start times out (SElinux relabel takes too long) (bsc#1259050). * samba-ad-dc-libs packages is missing a DLZ plugin for bind 9.20 (bsc#1249058). * VFS_Snapper does not show previous file versions in subdirectories. (bsc#1259667). * Updated to 4.22.9 ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-890=1 * SUSE Linux Enterprise Server for SAP applications 16.0 zypper in -t patch SUSE-SLES-16.0-890=1 ## Package List: * SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le s390x x86_64) *samba-client-libs-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-dcerpc-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-ad-dc-libs-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-ldb-ldap-4.22.9+git.506.22c03ce0781-160000.1.1 * ldb-tools-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-libs-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * python3-ldb-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-ad-dc-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-debugsource-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-python3-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-gpupdate-4.22.9+git.506.22c03ce0781-160000.1.1 * ctdb-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * libldb2-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-winbind-libs-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-client-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-python3-4.22.9+git.506.22c03ce0781-160000.1.1 * python3-ldb-4.22.9+git.506.22c03ce0781-160000.1.1 * ctdb-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-client-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-devel-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-libs-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-ad-dc-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-ad-dc-libs-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-libs-python3-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-dcerpc-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-dsdb-modules-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-libs-python3-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * libldb2-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-winbind-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-winbind-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-winbind-libs-4.22.9+git.506.22c03ce0781-160000.1.1 *samba-ldb-ldap-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-dsdb-modules-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * ctdb-pcp-pmda-4.22.9+git.506.22c03ce0781-160000.1.1 * ldb-tools-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * ctdb-pcp-pmda-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-tool-4.22.9+git.506.22c03ce0781-160000.1.1 * libldb-devel-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-client-libs-4.22.9+git.506.22c03ce0781-160000.1.1 * SUSE Linux Enterprise Server 16.0 (noarch) * samba-doc-4.22.9+git.506.22c03ce0781-160000.1.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (ppc64le x86_64) * samba-client-libs-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-dcerpc-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-ad-dc-libs-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-ldb-ldap-4.22.9+git.506.22c03ce0781-160000.1.1 * ldb-tools-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-libs-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * python3-ldb-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-ad-dc-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-debugsource-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-python3-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-gpupdate-4.22.9+git.506.22c03ce0781-160000.1.1 * ctdb-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * libldb2-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-winbind-libs-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-client-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-python3-4.22.9+git.506.22c03ce0781-160000.1.1 * python3-ldb-4.22.9+git.506.22c03ce0781-160000.1.1 * ctdb-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-client-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-devel-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-libs-4.22.9+git.506.22c03ce0781-160000.1.1 *samba-ad-dc-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-ad-dc-libs-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-dcerpc-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-dsdb-modules-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-libs-python3-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-libs-python3-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * libldb2-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-winbind-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-winbind-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-winbind-libs-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-ldb-ldap-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-dsdb-modules-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * ctdb-pcp-pmda-4.22.9+git.506.22c03ce0781-160000.1.1 * ldb-tools-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * ctdb-pcp-pmda-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-tool-4.22.9+git.506.22c03ce0781-160000.1.1 * libldb-devel-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-client-libs-4.22.9+git.506.22c03ce0781-160000.1.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (noarch) * samba-doc-4.22.9+git.506.22c03ce0781-160000.1.1 ## References: * https://www.suse.com/security/cve/CVE-2026-1933.html * https://www.suse.com/security/cve/CVE-2026-2340.html * https://www.suse.com/security/cve/CVE-2026-3012.html * https://www.suse.com/security/cve/CVE-2026-3238.html * https://www.suse.com/security/cve/CVE-2026-4408.html * https://www.suse.com/security/cve/CVE-2026-4480.html * https://bugzilla.suse.com/show_bug.cgi?id=1249058 * https://bugzilla.suse.com/show_bug.cgi?id=1255755 * https://bugzilla.suse.com/show_bug.cgi?id=1257200 * https://bugzilla.suse.com/show_bug.cgi?id=1259050 * https://bugzilla.suse.com/show_bug.cgi?id=1259667 * https://bugzilla.suse.com/show_bug.cgi?id=1261158 * https://bugzilla.suse.com/show_bug.cgi?id=1261159 *https://bugzilla.suse.com/show_bug.cgi?id=1261160 * https://bugzilla.suse.com/show_bug.cgi?id=1261161 * https://bugzilla.suse.com/show_bug.cgi?id=1261163 * https://bugzilla.suse.com/show_bug.cgi?id=1261188 . Critical security update resolves six issues in Samba, highly recommended for installation on SUSE servers.. SUSE Samba Security Patch Remote Code Execution. . Severity: Critical. LinuxSecurity.com Team

Calendar%202 Jun 15, 2026 Critical SuSE
172

Ubuntu 20.04 Samba Serious DoS RCE Vulnerability USN-8306-2 Advisory

Several security issues were fixed in Samba.. ========================================================================== Ubuntu Security Notice USN-8306-2 June 10, 2026 samba vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 20.04 LTS Summary: Several security issues were fixed in Samba. Software Description: - samba: SMB/CIFS file, print, and login server for Unix Details: USN-8306-1 fixed vulnerabilities in Samba. This update provides the corresponding updates for CVE-2026-3238, CVE-2026-4408, and CVE-2026-4480 in Ubuntu 20.04 LTS. Original advisory details: Asim Viladi Oglu Manizada discovered that Samba incorrectly handled access checks on reparse point operations. An attacker could possibly use this issue to modify reparse point extended attributes on files that should have been read-only. This issue only affected Ubuntu 25.10 and Ubuntu 26.04 LTS. (CVE-2026-1933) Pavel Kohout discovered that Samba's vfs_worm module did not properly block file overwrites. An attacker could possibly use this issue to overwrite files that should have remained immutable. (CVE-2026-2340) Arad Inbar, Nir Somech, and Ben Grinberg discovered that Samba incorrectly handled certificate auto-enrolment group policies over HTTP without verification. A machine-in-the-middle attacker could possibly use this issue to install a malicious CA certificate. This issue only affected Ubuntu 24.04 LTS, Ubuntu 25.10, and Ubuntu 26.04 LTS. (CVE-2026-3012) Arad Inbar, Erez Cohen, Nir Somech, and Ben Grinberg discovered that Samba's Active Directory Domain Controller WINS server could be made to crash under certain circumstances. A remote attacker could possibly use this issue to cause a denial of service. (CVE-2026-3238) Ron Ben Yizhak discovered that Samba's DCE/RPC SAMR server incorrectly handled a non-default password check script configuration. A remote attacker could possibly use this issueto execute arbitrary code. (CVE-2026-4408) Ron Ben Yizhak discovered that Samba's printing subsystem incorrectly handled a non-default print command configuration. A remote attacker could possibly use this issue to execute arbitrary code. (CVE-2026-4480) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 20.04 LTS ctdb 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2 Available with Ubuntu Pro libnss-winbind 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2 Available with Ubuntu Pro libpam-winbind 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2 Available with Ubuntu Pro libsmbclient 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2 Available with Ubuntu Pro libsmbclient-dev 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2 Available with Ubuntu Pro libwbclient-dev 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2 Available with Ubuntu Pro libwbclient0 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2 Available with Ubuntu Pro python3-samba 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2 Available with Ubuntu Pro registry-tools 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2 Available with Ubuntu Pro samba 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2 Available with Ubuntu Pro samba-common 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2 Available with Ubuntu Pro samba-common-bin 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2 Available with Ubuntu Pro samba-dev 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2 Available with Ubuntu Pro samba-dsdb-modules 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2 Available with Ubuntu Pro samba-libs 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2 Available with Ubuntu Pro samba-vfs-modules 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2 Available with Ubuntu Pro smbclient 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2 Available with Ubuntu Pro winbind 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm2 Available with Ubuntu Pro In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-8306-2 https://ubuntu.com/security/notices/USN-8306-1 CVE-2026-3238, CVE-2026-4408, CVE-2026-4480 . Multiple security issues in Samba for Ubuntu 20.04 require immediate updates to prevent exploitation and system compromise.. Ubuntu Samba security update issues vulnerabilities patch. . Severity: Critical. LinuxSecurity.com Team

Calendar%202 Jun 10, 2026 Critical Ubuntu
100

SUSE Samba Critical Remote Code Exec Issues 2026-22045-1

An update that solves six vulnerabilities and has five fixes can now be installed.. # Security update for samba Announcement ID: SUSE-SU-2026:22045-1 Release Date: 2026-06-05T08:34:04Z Rating: critical References: * bsc#1249058 * bsc#1255755 * bsc#1257200 * bsc#1259050 * bsc#1259667 * bsc#1261158 * bsc#1261159 * bsc#1261160 * bsc#1261161 * bsc#1261163 * bsc#1261188 Cross-References: * CVE-2026-1933 * CVE-2026-2340 * CVE-2026-3012 * CVE-2026-3238 * CVE-2026-4408 * CVE-2026-4480 CVSS scores: * CVE-2026-1933 ( SUSE ): 7.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-1933 ( SUSE ): 7.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-1933 ( NVD ): 7.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-1933 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2026-2340 ( SUSE ): 7.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-2340 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2026-2340 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2026-3012 ( SUSE ): 7.6 CVSS:4.0/AV:A/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-3012 ( SUSE ): 8.0 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N * CVE-2026-3012 ( NVD ): 6.8 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-3012 ( NVD ): 8.0 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N * CVE-2026-3238 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-3238 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-4408 ( SUSE ): 9.4 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H * CVE-2026-4408 ( SUSE ): 9.9 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-4408 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-4408 ( NVD ): 9.0 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H * CVE-2026-4480 ( SUSE ): 10.0 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H * CVE-2026-4480 ( SUSE ): 10.0 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H * CVE-2026-4480 ( NVD ): 9.0 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H * CVE-2026-4480 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Micro 6.2 An update that solves six vulnerabilities and has five fixes can now be installed. ## Description: This update for samba fixes the following issues Security issues: * CVE-2026-1933: Missing access check on reparse point operations (bsc#1261188). * CVE-2026-2340: vfs_worm does not block directory modification (bsc#1261158). * CVE-2026-3012: group policy certificate enrollment uses http: // without validation (bsc#1261159). * CVE-2026-3238: unauthenticated udp packet crashes AD DC nbt server (bsc#1261160). * CVE-2026-4408: Remote Code Execution in SAMR (bsc#1261163). * CVE-2026-4480: Unauthenticated Remote Code Execution (bsc#1261161). Changes for samba: * network:samba:STABLE/samba: "use-kerberos=desired" broken / Dolphin requires login for Samba shares (bsc#1255755). * Samba service start times out (SElinux relabel takes too long) (bsc#1259050). * samba-ad-dc-libs packages is missing a DLZ plugin for bind 9.20 (bsc#1249058). * VFS_Snapper does not show previous file versions in subdirectories. (bsc#1259667). * Updated to 4.22.9 ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.2 zypper in -t patch SUSE-SL-Micro-6.2-890=1 ## Package List: * SUSE Linux Micro 6.2 (aarch64 ppc64le s390x x86_64) * samba-client-libs-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-debugsource-4.22.9+git.506.22c03ce0781-160000.1.1 * libldb2-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 *libldb2-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-client-libs-4.22.9+git.506.22c03ce0781-160000.1.1 * samba-debuginfo-4.22.9+git.506.22c03ce0781-160000.1.1 ## References: * https://www.suse.com/security/cve/CVE-2026-1933.html * https://www.suse.com/security/cve/CVE-2026-2340.html * https://www.suse.com/security/cve/CVE-2026-3012.html * https://www.suse.com/security/cve/CVE-2026-3238.html * https://www.suse.com/security/cve/CVE-2026-4408.html * https://www.suse.com/security/cve/CVE-2026-4480.html * https://bugzilla.suse.com/show_bug.cgi?id=1249058 * https://bugzilla.suse.com/show_bug.cgi?id=1255755 * https://bugzilla.suse.com/show_bug.cgi?id=1257200 * https://bugzilla.suse.com/show_bug.cgi?id=1259050 * https://bugzilla.suse.com/show_bug.cgi?id=1259667 * https://bugzilla.suse.com/show_bug.cgi?id=1261158 * https://bugzilla.suse.com/show_bug.cgi?id=1261159 * https://bugzilla.suse.com/show_bug.cgi?id=1261160 * https://bugzilla.suse.com/show_bug.cgi?id=1261161 * https://bugzilla.suse.com/show_bug.cgi?id=1261163 * https://bugzilla.suse.com/show_bug.cgi?id=1261188 . Critical Samba update for SUSE addresses multiple issues including remote code execution threats and installation instructions.. SUSE Samba Security Patch Critical Update Remote Code Execution. . Severity: Critical. LinuxSecurity.com Team

Calendar%202 Jun 09, 2026 Critical SuSE
217

Oracle Linux 8 Samba Important Buffer Overflow Advisory ELSA-2026-22644

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:. Oracle Linux Security Advisory ELSA-2026-22644 http://linux.oracle.com/errata/ELSA-2026-22644.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable LinuxNetwork: x86_64: ctdb-4.19.4-16.0.1.el8_10.x86_64.rpm libnetapi-4.19.4-16.0.1.el8_10.i686.rpm libnetapi-4.19.4-16.0.1.el8_10.x86_64.rpm libnetapi-devel-4.19.4-16.0.1.el8_10.i686.rpm libnetapi-devel-4.19.4-16.0.1.el8_10.x86_64.rpm libsmbclient-4.19.4-16.0.1.el8_10.i686.rpm libsmbclient-4.19.4-16.0.1.el8_10.x86_64.rpm libsmbclient-devel-4.19.4-16.0.1.el8_10.i686.rpm libsmbclient-devel-4.19.4-16.0.1.el8_10.x86_64.rpm libwbclient-4.19.4-16.0.1.el8_10.i686.rpm libwbclient-4.19.4-16.0.1.el8_10.x86_64.rpm libwbclient-devel-4.19.4-16.0.1.el8_10.i686.rpm libwbclient-devel-4.19.4-16.0.1.el8_10.x86_64.rpm python3-samba-4.19.4-16.0.1.el8_10.i686.rpm python3-samba-4.19.4-16.0.1.el8_10.x86_64.rpm python3-samba-dc-4.19.4-16.0.1.el8_10.x86_64.rpm python3-samba-devel-4.19.4-16.0.1.el8_10.i686.rpm python3-samba-devel-4.19.4-16.0.1.el8_10.x86_64.rpm python3-samba-test-4.19.4-16.0.1.el8_10.x86_64.rpm samba-4.19.4-16.0.1.el8_10.x86_64.rpm samba-client-4.19.4-16.0.1.el8_10.x86_64.rpm samba-client-libs-4.19.4-16.0.1.el8_10.i686.rpm samba-client-libs-4.19.4-16.0.1.el8_10.x86_64.rpm samba-common-4.19.4-16.0.1.el8_10.noarch.rpm samba-common-libs-4.19.4-16.0.1.el8_10.i686.rpm samba-common-libs-4.19.4-16.0.1.el8_10.x86_64.rpm samba-common-tools-4.19.4-16.0.1.el8_10.x86_64.rpm samba-dc-libs-4.19.4-16.0.1.el8_10.i686.rpm samba-dc-libs-4.19.4-16.0.1.el8_10.x86_64.rpm samba-dcerpc-4.19.4-16.0.1.el8_10.x86_64.rpm samba-devel-4.19.4-16.0.1.el8_10.i686.rpm samba-devel-4.19.4-16.0.1.el8_10.x86_64.rpm samba-krb5-printing-4.19.4-16.0.1.el8_10.x86_64.rpm samba-ldb-ldap-modules-4.19.4-16.0.1.el8_10.x86_64.rpm samba-libs-4.19.4-16.0.1.el8_10.i686.rpm samba-libs-4.19.4-16.0.1.el8_10.x86_64.rpm samba-pidl-4.19.4-16.0.1.el8_10.noarch.rpm samba-test-4.19.4-16.0.1.el8_10.x86_64.rpm samba-test-libs-4.19.4-16.0.1.el8_10.x86_64.rpm samba-tools-4.19.4-16.0.1.el8_10.x86_64.rpm samba-usershares-4.19.4-16.0.1.el8_10.x86_64.rpm samba-vfs-glusterfs-4.19.4-16.0.1.el8_10.x86_64.rpm samba-vfs-iouring-4.19.4-16.0.1.el8_10.x86_64.rpm samba-winbind-4.19.4-16.0.1.el8_10.x86_64.rpm samba-winbind-clients-4.19.4-16.0.1.el8_10.x86_64.rpm samba-winbind-krb5-locator-4.19.4-16.0.1.el8_10.x86_64.rpm samba-winbind-modules-4.19.4-16.0.1.el8_10.i686.rpm samba-winbind-modules-4.19.4-16.0.1.el8_10.x86_64.rpm samba-winexe-4.19.4-16.0.1.el8_10.x86_64.rpm aarch64: ctdb-4.19.4-16.0.1.el8_10.aarch64.rpm libnetapi-4.19.4-16.0.1.el8_10.aarch64.rpm libnetapi-devel-4.19.4-16.0.1.el8_10.aarch64.rpm libsmbclient-4.19.4-16.0.1.el8_10.aarch64.rpm libsmbclient-devel-4.19.4-16.0.1.el8_10.aarch64.rpm libwbclient-4.19.4-16.0.1.el8_10.aarch64.rpm libwbclient-devel-4.19.4-16.0.1.el8_10.aarch64.rpm python3-samba-4.19.4-16.0.1.el8_10.aarch64.rpm python3-samba-dc-4.19.4-16.0.1.el8_10.aarch64.rpm python3-samba-devel-4.19.4-16.0.1.el8_10.aarch64.rpm python3-samba-test-4.19.4-16.0.1.el8_10.aarch64.rpm samba-4.19.4-16.0.1.el8_10.aarch64.rpm samba-client-4.19.4-16.0.1.el8_10.aarch64.rpm samba-client-libs-4.19.4-16.0.1.el8_10.aarch64.rpm samba-common-4.19.4-16.0.1.el8_10.noarch.rpm samba-common-libs-4.19.4-16.0.1.el8_10.aarch64.rpm samba-common-tools-4.19.4-16.0.1.el8_10.aarch64.rpm samba-dc-libs-4.19.4-16.0.1.el8_10.aarch64.rpm samba-dcerpc-4.19.4-16.0.1.el8_10.aarch64.rpm samba-devel-4.19.4-16.0.1.el8_10.aarch64.rpm samba-krb5-printing-4.19.4-16.0.1.el8_10.aarch64.rpm samba-ldb-ldap-modules-4.19.4-16.0.1.el8_10.aarch64.rpm samba-libs-4.19.4-16.0.1.el8_10.aarch64.rpm samba-pidl-4.19.4-16.0.1.el8_10.noarch.rpm samba-test-4.19.4-16.0.1.el8_10.aarch64.rpm samba-test-libs-4.19.4-16.0.1.el8_10.aarch64.rpm samba-tools-4.19.4-16.0.1.el8_10.aarch64.rpm samba-usershares-4.19.4-16.0.1.el8_10.aarch64.rpm samba-vfs-glusterfs-4.19.4-16.0.1.el8_10.aarch64.rpm samba-vfs-iouring-4.19.4-16.0.1.el8_10.aarch64.rpm samba-winbind-4.19.4-16.0.1.el8_10.aarch64.rpm samba-winbind-clients-4.19.4-16.0.1.el8_10.aarch64.rpm samba-winbind-krb5-locator-4.19.4-16.0.1.el8_10.aarch64.rpm samba-winbind-modules-4.19.4-16.0.1.el8_10.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates/samba-4.19.4-16.0.1.el8_10.src.rpm RelatedCVEs: CVE-2026-3012 CVE-2026-4408 CVE-2026-4480 Description of changes: [4.19.4-16.0.1] - s3: winbindd: winbindd_pam: fix leak in extract_pac_vrfy_sigs [Orabug: 36518285] - s3:passdb: Do not leak memory in pdb_tdb [Orabug: 36371377] - Gluster volumes not accessible via Samba due to missing samba-vfs-glusterfs in OL8 [Orabug: 30205755] [4.19.4-16] - resolves: RHEL-156322 - Fix CVE-2026-3012 - resolves: RHEL-161647 - Fix CVE-2026-4480 - resolves: RHEL-177933 - Fix CVE-2026-4408 - resolves: RHEL-166866 - Build hardening, stack protection with FORTIFY_SOURCE _______________________________________________ El-errata mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://oss.oracle.com/mailman/listinfo/el-errata . Oracle Linux 8 advisory updates critical Samba issues to protect against buffer overflow and other threats.. Oracle Linux 8 Samba Security Advisory Importance. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Jun 08, 2026 Important Oracle
99

Slackware 15.0 Releases Key Patch for Critical RCE DoS Samba Flaw

New samba packages are available for Slackware 15.0 to fix security issues.. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 [slackware-security] samba (SSA:2026-158-01) New samba packages are available for Slackware 15.0 to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: +--------------------------+ extra/samba-4.22.10-i586-1_slack15.0.txz: Upgraded. This is a security release in order to address the following defects: Missing access checks on reparse point operations. WORM vfs module does not block overwrites. auto-enrolment GPO installing CA certificate over http without verification. Denial of service against AD DC WINS server. Unauthenticated Remote Code Execution in Samba DCE/RPC SAMR server. Unauthenticated Remote Code Execution in Samba printing subsystem. For more information, see: https://www.samba.org/samba/security/CVE-2026-1933.html https://www.samba.org/samba/security/CVE-2026-2340.html https://www.samba.org/samba/security/CVE-2026-3012.html https://www.samba.org/samba/security/CVE-2026-3238.html https://www.samba.org/samba/security/CVE-2026-4408.html https://www.samba.org/samba/security/CVE-2026-4480.html https://www.cve.org/CVERecord?id=CVE-2026-1933 https://www.cve.org/CVERecord?id=CVE-2026-2340 https://www.cve.org/CVERecord?id=CVE-2026-3012 https://www.cve.org/CVERecord?id=CVE-2026-3238 https://www.cve.org/CVERecord?id=CVE-2026-4408 https://www.cve.org/CVERecord?id=CVE-2026-4480 (* Security fix *) +--------------------------+ Where to find the new packages: +-----------------------------+ Thanks to the friendly folks at the OSU Open Source Lab (http://osuosl.org) for donating FTP and rsync hosting to the Slackware project! :-) Also see the "Get Slack" section on http://slackware.com for additional mirror sites near you. Updated package for Slackware 15.0: ftp://ftp.slackware.com/pub/slackware/slackware-15.0/extra/samba-4.22.10-i586-1_slack15.0.txz Updated package for Slackware x86_6415.0: ftp://ftp.slackware.com/pub/slackware/slackware64-15.0/extra/samba-4.22.10-x86_64-1_slack15.0.txz MD5 signatures: +-------------+ Slackware 15.0 package: 74437119c84e65f40ff2d1074fc71080 samba-4.22.10-i586-1_slack15.0.txz Slackware x86_64 15.0 package: 55fc2128809e2e0ab6a9fe31014525e7 samba-4.22.10-x86_64-1_slack15.0.txz Installation instructions: +------------------------+ Upgrade the package as root: # upgradepkg samba-4.22.10-i586-1_slack15.0.txz Then, if Samba is running restart it: # /etc/rc.d/rc.samba restart +-----+ . Samba packages for Slackware 15.0 resolve multiple critical security issues, including remote code execution and DoS.. Samba Security Fix, Slackware Update, Remote Code Execution, Denial of Service, Samba Advisory. . Severity: Critical. LinuxSecurity.com Team

Calendar%202 Jun 07, 2026 Critical Slackware
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200