-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 15 May 2026 06:38:23 +0300
Source: samba
Architecture: source
Version: 2:4.22.8+dfsg-0+deb13u2
Distribution: trixie-security
Urgency: medium
Maintainer: Debian Samba Maintainers <pkg-samba-maint@lists.alioth.debian.org>
Changed-By: Michael Tokarev <mjt@tls.msk.ru>
Changes:
 samba (2:4.22.8+dfsg-0+deb13u2) trixie-security; urgency=medium
 .
   * https://bugzilla.samba.org/show_bug.cgi?id=16018
     May-2026 samba security update fixing the following issues:
     CVE-2026-1933: Missing access check on reparse point operations
       https://bugzilla.samba.org/show_bug.cgi?id=15992
     CVE-2026-2340: vfs_worm does not block directory modification
       https://bugzilla.samba.org/show_bug.cgi?id=15997
     CVE-2026-3012: group policy certificate enrollment uses http://
       without validation
       https://bugzilla.samba.org/show_bug.cgi?id=16003
     CVE-2026-3238: unauthenticated udp packet crashes AD DC nbt server
       https://bugzilla.samba.org/show_bug.cgi?id=16012
     CVE-2026-4480: Unauthenticated Remote Code Execution using print command
       https://bugzilla.samba.org/show_bug.cgi?id=16033
     CVE-2026-4408: Remote Code Execution in SAMR when check password script
       contains %u substitution placeholder
       https://bugzilla.samba.org/show_bug.cgi?id=16034
Checksums-Sha1:
 c9b41c9bb1530e203b28077abc810076d97fd064 5756 samba_4.22.8+dfsg-0+deb13u2.dsc
 0438678569fbd6ae60ea68519f0d88470d24060e 25635540 samba_4.22.8+dfsg.orig.tar.xz
 af964c422499868d9da24b9dd7dab0747af0e4eb 209784 samba_4.22.8+dfsg-0+deb13u2.debian.tar.xz
 0a897be0554a839f78cf92268932721a8a49ec02 6130 samba_4.22.8+dfsg-0+deb13u2_source.buildinfo
Checksums-Sha256:
 fdfe798817a1ff5e4918047ecee6139c6ad1fbef1e45e4aa9c54c27258b8d5b1 5756 samba_4.22.8+dfsg-0+deb13u2.dsc
 aa098b189d01e0d828af1dbc4046700b08d597c71739ae4070bd49f91363f099 25635540 samba_4.22.8+dfsg.orig.tar.xz
 e0e2a1448a3aacc163954918f6fd07b346dcc5f30b4c6c5eb20e645d037aad10 209784 samba_4.22.8+dfsg-0+deb13u2.debian.tar.xz
 b80359ddf611bf3866a8a108d2633ab0d313856cb4184bae3ba6787adc42727d 6130 samba_4.22.8+dfsg-0+deb13u2_source.buildinfo
Files:
 d492f5dfbc6890128834f7947441c0a4 5756 net optional samba_4.22.8+dfsg-0+deb13u2.dsc
 30f47007034da8b12b16686220b5ebec 25635540 net optional samba_4.22.8+dfsg.orig.tar.xz
 163b4a56c9813f8c8f4675a24c5ad84a 209784 net optional samba_4.22.8+dfsg-0+deb13u2.debian.tar.xz
 5b4d8f2841b9a125e66d5467a1329953 6130 net optional samba_4.22.8+dfsg-0+deb13u2_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=HYl9
-----END PGP SIGNATURE-----