cifs-utils 2:6.8-1ubuntu1.2 source package in Ubuntu


cifs-utils (2:6.8-1ubuntu1.2) bionic-security; urgency=medium

  * SECURITY UPDATE: command injection via shell
    - debian/patches/CVE-2020-14342.patch: fix injection in mount.cifs.c.
    - CVE-2020-14342
  * SECURITY UPDATE: krb5 credential use from host
    - debian/patches/CVE-2021-20208-1.patch: try to use container
      namespaces in cifs.upcall.c.
    - debian/patches/CVE-2021-20208-2.patch: fix regression in kerberos
      mount in cifs.upcall.c.
    - CVE-2021-20208
  * SECURITY UPDATE: buffer overflow in ip= command-line argument
    - debian/patches/CVE-2022-27239.patch: fix length check for ip option
      parsing in mount.cifs.c.
    - CVE-2022-27239
  * SECURITY UPDATE: information leak via verbose logging
    - debian/patches/CVE-2022-29869.patch: fix verbose messages on option
      parsing in mount.cifs.c.
    - CVE-2022-29869

 -- Marc Deslauriers <email address hidden>  Wed, 01 Jun 2022 12:19:46 -0400

Upload details

Uploaded by:
Marc Deslauriers
Uploaded to:
Original maintainer:
Ubuntu Developers
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section
Bionic updates main otherosfs
Bionic security main otherosfs


File Size SHA-256 Checksum
cifs-utils_6.8.orig.tar.bz2 375.4 KiB e7d1f6050c43f21f82cd77e288eb756755effd22f0c310fc2c525df9d41dff79
cifs-utils_6.8-1ubuntu1.2.debian.tar.xz 31.1 KiB 7aa49939ab8ec8e225a41bd54258859ef5446978b92a7bfce8d08cf3986ee2d9
cifs-utils_6.8-1ubuntu1.2.dsc 2.3 KiB 32a1a61f84a32198b8fe2f287b0946b1c73af8ca8a00f37aa1a2a5da93dce810

View changes file

Binary packages built by this source

cifs-utils: Common Internet File System utilities

 The SMB/CIFS protocol provides support for cross-platform file sharing with
 Microsoft Windows, OS X, and other Unix systems.
 This package provides utilities for managing mounts of CIFS network
 file systems.

cifs-utils-dbgsym: debug symbols for cifs-utils