-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sat, 27 Dec 2025 10:40:36 +0100 Source: smb4k Binary: smb4k smb4k-dbgsym Architecture: i386 Version: 4.0.0-1+deb13u1 Distribution: trixie-security Urgency: high Maintainer: amd64 / i386 Build Daemon (x86-ubc-02) Changed-By: Salvatore Bonaccorso Description: smb4k - Samba (SMB) share advanced browser Closes: 1122381 Changes: smb4k (4.0.0-1+deb13u1) trixie-security; urgency=high . * Non-maintainer upload by the Security Team. * Fix two security issues in the KAuth mounthelper: - CVE-2025-66002: local users can perform arbitrary unmounts via smb4kmounthelper due to lack of input validation - CVE-2025-66003: local users can perform a local root exploit via smb4k mounthelper if they can access and control the contents of a Samba share (Closes: #1122381) * Merge Smb4KHardwareInterface class from master so that the merged security fixes can be compiled Checksums-Sha1: 10cb153526c3cb8ae4073d54e23c03a03d88587e 11939180 smb4k-dbgsym_4.0.0-1+deb13u1_i386.deb c30ea2acbd89d738e61d0b3e891b52197ba359db 21772 smb4k_4.0.0-1+deb13u1_i386-buildd.buildinfo 81a3e58e0720a61d7adbec467da6a621c5015d62 5162832 smb4k_4.0.0-1+deb13u1_i386.deb Checksums-Sha256: 879cb9135002fd5666543ecb97a8e0ffcc38a046ab9d43dfa52776cf996342cb 11939180 smb4k-dbgsym_4.0.0-1+deb13u1_i386.deb 0d301a19d4bd83016b8f8256a851d926eec3d5bcfe3a670de2dc4056e84623d1 21772 smb4k_4.0.0-1+deb13u1_i386-buildd.buildinfo 0bf02bb7d874b5dd93c14b9bf59be08862c812526d6b2c13f7703ab314c12b15 5162832 smb4k_4.0.0-1+deb13u1_i386.deb Files: 8b6878d9b4a88ed4811f1d49eac0f83f 11939180 debug optional smb4k-dbgsym_4.0.0-1+deb13u1_i386.deb 7b58a555ff6f3bb9ada5c12a11cc7522 21772 kde optional smb4k_4.0.0-1+deb13u1_i386-buildd.buildinfo 194f8062277b9ba2f97368eaa651a1f7 5162832 kde optional smb4k_4.0.0-1+deb13u1_i386.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEc5vuvf2HND40bnI+8IREj/cRiTMFAmlVFv8ACgkQ8IREj/cR iTOm8A/9GarxdQszrRKTrz9RjHv3CO6VhLH1Emit/BAmWuDrctf6WJ8/Kl/gXCat abOtjZ//T1mHE/bSWfkKcd2v5xHhcEbUGEKIU3+jU8V4PQh+AOV8gLyJFfFEdQ7z 7Xg6R02N20T3t16SB2z1poSKfKu40We7SLxtrKf9TE26hs+dtcwjZEmB+53Pq6UL xnjC5fsu/DrMcx03iwHuHfM7JEBQxj5ckYnbh9Xr0GNnIICcx6vu/28vci6mj67w hPVmaply8DV4oYmqrkQLzV31aCunWj/0jYfQyT+D04yyXxCR4Ovo0iIM7t7xGhao D874oPcE5ntLa6I9M7RTuVui4q1DTdAEiGbiROfAhpdul9onj97+drcE9NNhKyHU dwMB+SoNFK1dg9ZyN7Bf2fmpWd4nAbKYDT7m/pR3QOAQskWNGJ8XqVVRpal9RvJF RrACvrj3nSQJKdFP3quyTq+qMQ1g4B1GY12Pd/3MT+j8Jz3Y0u19Xv4z8HGIZUr0 gCJ5FZ481rUI6lkoEm1SAFI+HmAI2PQ+bEoXo/YPK+tPbo0GMkUPJTuX5ek08Hw2 sas9yrVo65uzL/Nzf3mj3vbRwNDP3hEHY0w6igomWdmrQ0jzhIu75yBlmU3dlelX MawuJ6BXyBNTFdfru7W0icjlvv4j2JFrYYsrpbdJloze0B4hXJ8= =6naF -----END PGP SIGNATURE-----