-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sat, 27 Dec 2025 10:40:36 +0100 Source: smb4k Binary: smb4k smb4k-dbgsym Architecture: s390x Version: 4.0.0-1+deb13u1 Distribution: trixie-security Urgency: high Maintainer: s390x Build Daemon (zandonai) Changed-By: Salvatore Bonaccorso Description: smb4k - Samba (SMB) share advanced browser Closes: 1122381 Changes: smb4k (4.0.0-1+deb13u1) trixie-security; urgency=high . * Non-maintainer upload by the Security Team. * Fix two security issues in the KAuth mounthelper: - CVE-2025-66002: local users can perform arbitrary unmounts via smb4kmounthelper due to lack of input validation - CVE-2025-66003: local users can perform a local root exploit via smb4k mounthelper if they can access and control the contents of a Samba share (Closes: #1122381) * Merge Smb4KHardwareInterface class from master so that the merged security fixes can be compiled Checksums-Sha1: e134682bc010b788a30d874835ac5d35434b2edc 11748412 smb4k-dbgsym_4.0.0-1+deb13u1_s390x.deb c7eeab1d0888ee716b296e2e217d0ef403381f72 21700 smb4k_4.0.0-1+deb13u1_s390x-buildd.buildinfo 4b71ecf9f718189193cae33a26076ee15e42c72c 5129004 smb4k_4.0.0-1+deb13u1_s390x.deb Checksums-Sha256: d0b8b44714b641f4d105a41b2adcbda3c6b080c54b4c09e8f082129896b88845 11748412 smb4k-dbgsym_4.0.0-1+deb13u1_s390x.deb 9cea2a45496a0049af8111e4f2bff115e831459aa5a3d56b25ac7a2d28e5405f 21700 smb4k_4.0.0-1+deb13u1_s390x-buildd.buildinfo 35476b8c1d1326f818b774d15b08980a9cfc2e81203596251a6365b85b0adce8 5129004 smb4k_4.0.0-1+deb13u1_s390x.deb Files: 776ef95956e46dc3e8bf65bad1b89ea1 11748412 debug optional smb4k-dbgsym_4.0.0-1+deb13u1_s390x.deb 061ed75bb423dc260f3f10c759724a57 21700 kde optional smb4k_4.0.0-1+deb13u1_s390x-buildd.buildinfo c7e5749ff03857a5989e0f2d1c820bf9 5129004 kde optional smb4k_4.0.0-1+deb13u1_s390x.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEENly2ANlpa4eeqnluvVOPI7pYNpgFAmlVF40ACgkQvVOPI7pY NpgznA//ZU2x3ea4ryQDghw0Nb4+JFcm2MufeFyg+cSsxN856r7JQuk3k0Ecz10p 3zEhxHXZVbdkf9VsXFwzYzMMt2xGgGEVRJhW1No7NWVIPm+4WhGKbleoJcR3C2v6 FhEOIxxcx2I3fPFXX0s/iNNseVrydEL+vV82VNjFeIggaBElXixxH0uB0YX0qLj/ Cr9gNmmUiOzz0reBScsu0srGnCDk56tDajYm98Q32/7GTdIek73WZgnyRXr/1wEx 6KlUR1w9ik9QEXqT3FLOU7Pfqn3BvRm1eKe3JS1TiDgb4d/98fOobxYaRjpYZOGV 56Ds5+AUvYtKFjBtic32f4XAb9QdGIewFK0NuMcoSxsa1olMbdgf2qDnkCUcGdoV 6lauPzIHTLb7vyEZyT1p9oHv49RdHsip48rus6smM/CGGFGk1ZvO5M36UiE/Rvix h4OTRnc3PSAvByqV6CWzMcaUpczr8F3exb/lnloJecWlNhFFT1BcuEtluveasLC8 9a/+Hlh8japWLz/2xgXqyQX/aZBt2Xh4FcR96ICUO9Y6TJgj0pmPhPbt+s75GmbO +7M/ecSmU/GwDF+3t3AedvCZqt6nXb8YsqGTfFesY2BR7zIMrewd16w0jVQGKyQn +mvizCVyu/sKxIt+Wj/E/xW1dIFzvm+xq5jxQb5pWeh39Ab962c= =8pxT -----END PGP SIGNATURE-----