CVE-2025-2312

A flaw was found in cifs-utils. When trying to obtain Kerberos credentials, the cifs.upcall program from the cifs-utils package makes an upcall to the wrong namespace in containerized environments. This issue may lead to disclosing sensitive data from the host's Kerberos credentials cache...

Oracle Linux 6 : cifs-utils (ELSA-2012-0902)

The remote Oracle Linux 6 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2012-0902 advisory. 4.8.1-10 - mount.cifs: don't allow unprivileged users to mount onto dirs they can't chdir into bz 812782 4.8.1-9 - cifs.upcall: use krb5snametoprincipal to...

Scientific Linux Security Update : cifs-utils on SL6.x i386/x86_64 (20120620)

The cifs-utils package contains tools for mounting and managing shares on Linux using the SMB/CIFS protocol. The CIFS shares can be used as standard Linux file systems. A file existence disclosure flaw was found in mount.cifs. If the tool was installed with the setuid bit set, a local attacker...

CentOS Update for cifs-utils CESA-2012:0902 centos6

Check for the Version of cifs-utils OpenVAS Vulnerability Test CentOS Update for cifs-utils CESA-2012:0902 centos6 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

CentOS 6 : cifs-utils (CESA-2012:0902)

An updated cifs-utils package that fixes one security issue, multiple bugs, and adds various enhancements is now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score,...

cifs security update

CentOS Errata and Security Advisory CESA-2012:0902 An updated cifs-utils package that fixes one security issue, multiple bugs, and adds various enhancements is now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. A...

Low: Red Hat Security Advisory: cifs-utils security, bug fix, and enhancement update

An updated cifs-utils package that fixes one security issue, multiple bugs, and adds various enhancements is now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score,...

Fedora 17 : cifs-utils-5.4-1.fc17 (2012-6257)

This updates the cifs-utils package to version 5.4, which contains a number of bugfixes and enhancements. Highlights include : - mount.cifs now supports the -s option by passing 'sloppy' to the kernel in the options string - cifs.upcall now properly respects the domainrealm section in krb5.conf -...

Fedora 16 : cifs-utils-5.4-1.fc16 (2012-6375)

This updates the cifs-utils package to version 5.4, which contains a number of bugfixes and enhancements. Highlights include : - mount.cifs now supports the -s option by passing 'sloppy' to the kernel in the options string - cifs.upcall now properly respects the domainrealm section in krb5.conf -...

Fedora 15 : cifs-utils-5.4-1.fc15 (2012-6398)

This updates the cifs-utils package to version 5.4, which contains a number of bugfixes and enhancements. Highlights include : - mount.cifs now supports the -s option by passing 'sloppy' to the kernel in the options string - cifs.upcall now properly respects the domainrealm section in krb5.conf -...

CVE-2010-2524

The DNS resolution functionality in the CIFS implementation in the Linux kernel before 2.6.35, when CONFIGCIFSDFSUPCALL is enabled, relies on a user's keyring for the dnsresolver upcall in the cifs.upcall userspace helper, which allows local users to spoof the results of DNS queries and perform...

CVE-2010-2524

The DNS resolution functionality in the CIFS implementation in the Linux kernel before 2.6.35, when CONFIGCIFSDFSUPCALL is enabled, relies on a user's keyring for the dnsresolver upcall in the cifs.upcall userspace helper, which allows local users to spoof the results of DNS queries and perform...

CVE-2010-2524

The DNS resolution functionality in the CIFS implementation in the Linux kernel before 2.6.35, when CONFIGCIFSDFSUPCALL is enabled, relies on a user's keyring for the dnsresolver upcall in the cifs.upcall userspace helper, which allows local users to spoof the results of DNS queries and perform...

MDVA-2009:025 : keyutils

This update fixes two minor issues with keyutils. request-key was installed in /usr/sbin while the kernel expect it in /sbin directory. keyctl was installed in /usr/bin instead of /bin. This update also add lines to /etc/request-key.conf for cifs.upcall required for krb5 support for mount.cifs...

MDVA-2009:025-1 : keyutils

This update fixes two minor issues with keyutils. request-key was installed in /usr/sbin while the kernel expect it in /sbin directory. keyctl was installed in /usr/bin instead of /bin. This update also add lines to /etc/request-key.conf for cifs.upcall required for krb5 support for mount.cifs...