There is 1 open security issue in bookworm.
1 issue left for the package maintainer to handle:
- CVE-2025-2312:
(needs triaging)
A flaw was found in cifs-utils. When trying to obtain Kerberos credentials, the cifs.upcall program from the cifs-utils package makes an upcall to the wrong namespace in containerized environments. This issue may lead to disclosing sensitive data from the host's Kerberos credentials cache.
You can find information about how to handle this issue in the security team's documentation.