cifs-utils 2:6.9-1ubuntu0.2 source package in Ubuntu


cifs-utils (2:6.9-1ubuntu0.2) focal-security; urgency=medium

  * SECURITY UPDATE: command injection via shell
    - debian/patches/CVE-2020-14342.patch: fix injection in mount.cifs.c.
    - CVE-2020-14342
  * SECURITY UPDATE: krb5 credential use from host
    - debian/patches/CVE-2021-20208-1.patch: try to use container
      namespaces in cifs.upcall.c.
    - debian/patches/CVE-2021-20208-2.patch: fix regression in kerberos
      mount in cifs.upcall.c.
    - CVE-2021-20208
  * SECURITY UPDATE: buffer overflow in ip= command-line argument
    - debian/patches/CVE-2022-27239.patch: fix length check for ip option
      parsing in mount.cifs.c.
    - CVE-2022-27239
  * SECURITY UPDATE: information leak via verbose logging
    - debian/patches/CVE-2022-29869.patch: fix verbose messages on option
      parsing in mount.cifs.c.
    - CVE-2022-29869

 -- Marc Deslauriers <email address hidden>  Wed, 01 Jun 2022 12:12:44 -0400

Upload details

Uploaded by:
Marc Deslauriers
Uploaded to:
Original maintainer:
Ubuntu Developers
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section
Focal updates main otherosfs
Focal security main otherosfs


File Size SHA-256 Checksum
cifs-utils_6.9.orig.tar.bz2 391.0 KiB 18d8f1bf92c13c4d611502dbd6759e3a766ddc8467ec8a2eda3f589e40b9ac9c
cifs-utils_6.9-1ubuntu0.2.debian.tar.xz 19.6 KiB 050ba4e1dd8cc82f8273164e8b2d2f4c358fefb23ef12a3f9f4fc79e6126286a
cifs-utils_6.9-1ubuntu0.2.dsc 2.3 KiB 2e0e86b34d2e6a69ed591bcff3b432824b3443797cb0d116dad6672423f0d4cb

View changes file

Binary packages built by this source

cifs-utils: Common Internet File System utilities

 The SMB/CIFS protocol provides support for cross-platform file sharing with
 Microsoft Windows, OS X, and other Unix systems.
 This package provides utilities for managing mounts of CIFS network
 file systems.

cifs-utils-dbgsym: debug symbols for cifs-utils