cifs-utils (2:7.0-2ubuntu0.2) noble-security; urgency=medium
* SECURITY REGRESSION: Fix memory leak in check_service_ticket_exists()
if a valid Kerberos service ticket is not available.
(LP: #2113906)
- d/p/lp2113906-cifs.upcall-fix-memory-leaks-in-check_service_ticket.patch
* SECURITY REGRESSION: Correctly search the calling applications
environment for KRB5CCNAME if running kernel is not patched for
CVE-2025-2312, fixing mounts for AD users. (LP: #2112614)
- d/p/CVE-2025-2312-3.patch: cifs.upcall: correctly treat
UPTARGET_UNSPECIFIED as UPTARGET_APP.
-- Matthew Ruffell <matthew.ruffell@canonical.com> Wed, 11 Jun 2025 16:07:20 +1200
cifs-utils (2:7.0-2ubuntu0.1) noble-security; urgency=medium
* Skip checking the Kerberos TGT if a valid service ticket
is available. (LP: #2099917)
- d/p/lp2099917-cifs-utils-Skip-TGT-check-if-valid-service.patch
* SECURITY UPDATE: namespace confusion may lead to disclosing
sensitive data from host Kerberos credentials cache. (LP: #2099914)
- d/p/CVE-2025-2312-1.patch: CIFS.upcall to accomodate new
namespace mount opt.
- d/p/CVE-2025-2312-2.patch: cifs-utils: add documentation
for upcall_target.
- CVE-2025-2312
-- Matthew Ruffell <matthew.ruffell@canonical.com> Wed, 02 Apr 2025 16:33:05 +1300
cifs-utils (2:7.0-2build1) noble; urgency=high
* No change rebuild for 64-bit time_t and frame pointers.
-- Julian Andres Klode <juliank@ubuntu.com> Mon, 08 Apr 2024 17:55:24 +0200
cifs-utils (2:7.0-2) unstable; urgency=medium
* root_sbindir-hook.patch - fix upstream fix for non-parallel
install. Actually Closes: #993014
-- Michael Tokarev <mjt@tls.msk.ru> Fri, 26 Aug 2022 17:06:45 +0300
cifs-utils (2:7.0-1) unstable; urgency=medium
* New upstream release (also Closes: #993014)
* d/control: add mjt@ to Uploaders
* d/patches: removed 2 patches from last upload (not needed for 7.0)
* permissons.patch: spelling fix
* debian/cifs-utils.lintian-overrides: reword the only override
to match current lintian
-- Michael Tokarev <mjt@tls.msk.ru> Thu, 25 Aug 2022 23:09:14 +0300
cifs-utils (2:6.14-1.1) unstable; urgency=high
* Non-maintainer upload.
* mount.cifs: fix length check for ip option parsing (CVE-2022-27239)
(Closes: #1010818)
* mount.cifs: fix verbose messages on option parsing (CVE-2022-29869)
(Closes: #1010818)
-- Salvatore Bonaccorso <carnil@debian.org> Tue, 10 May 2022 21:59:48 +0200
cifs-utils (2:6.14-1) unstable; urgency=medium
* New upstream version 6.14
- Remove 0002-Install-hook-relative-to-DESTDIR.patch, fixed upstream
- Remove 0010-CVE-2021-20208.patch, merged
* Fix d/watch
* Standards-Version: 4.6.0
-- Mathieu Parent <sathieu@debian.org> Tue, 14 Dec 2021 11:15:06 +0100
cifs-utils (2:6.11-3) unstable; urgency=high
* CVE-2021-20208: cifs.upcall kerberos auth leak in container
(Closes: #987308)
-- Mathieu Parent <sathieu@debian.org> Thu, 06 May 2021 21:24:29 +0200
cifs-utils (2:6.11-2) unstable; urgency=medium
[ Sergio Durigan Junior ]
* Add bash-completion for smbinfo.
- d/bash-completion: New file.
- d/control: Suggests bash-completion.
- d/rules: Invoke dh --with bash-completion.
[ Mathieu Parent ]
* Recommends keyutils (Closes: #986867)
-- Mathieu Parent <sathieu@debian.org> Sat, 17 Apr 2021 18:31:22 +0200
cifs-utils (2:6.11-1) unstable; urgency=medium
[ Debian Janitor ]
* Set upstream metadata fields: Bug-Submit.
* Remove obsolete fields Name, Contact from debian/upstream/metadata.
* Update standards version to 4.4.1, no changes needed.
[ Mathieu Parent ]
* New upstream version 6.11
- CVE-2020-14342: Shell command injection vulnerability in mount.cifs
* Add sign-tags to gpb.conf
* Install hook relative to $(DESTDIR)
* Update standards version to 4.5.0, no changes needed.
* Update watch file format version to 4.
* Move to debhelper-compat 13
* Change script shbangs to python3
* Add python3 dependency
-- Mathieu Parent <sathieu@debian.org> Fri, 13 Nov 2020 09:48:45 +0100
cifs-utils (2:6.9-1) unstable; urgency=medium
[ Jelmer Vernooij ]
* Add really basic debian/upstream/metadata file.
[ Debian Janitor ]
* Use secure URI in Homepage field.
* Drop unnecessary dependency on dh-autoconf.
* Set upstream metadata fields: Contact.
* Bump debhelper from old 11 to 12.
* New upstream release.
* Refresh patches.
[ Mathieu Parent ]
* Standards-Version: 4.4.0
-- Mathieu Parent <sathieu@debian.org> Thu, 29 Aug 2019 11:51:23 +0200
# Older entries have been removed from this changelog.
# To read the complete changelog use `apt changelog cifs-utils`.
Generated by dwww version 1.16 on Mon Dec 15 21:06:43 CET 2025.