-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Thu, 16 Oct 2025 19:19:45 +0300
Source: samba
Architecture: source
Version: 2:4.22.6+dfsg-0+deb13u1
Distribution: trixie
Urgency: medium
Maintainer: Debian Samba Maintainers <pkg-samba-maint@lists.alioth.debian.org>
Changed-By: Michael Tokarev <mjt@tls.msk.ru>
Changes:
samba (2:4.22.6+dfsg-0+deb13u1) trixie; urgency=medium
.
* new upstream stable/security release:
- https://bugzilla.samba.org/show_bug.cgi?id=15843:
macOS Finder client DFS broken on 4.22.0
- https://bugzilla.samba.org/show_bug.cgi?id=15900:
'net ads group' failed to list domain groups
- https://bugzilla.samba.org/show_bug.cgi?id=15905:
samba-4.21 fails to join AD when multiple DCs are returned
- https://bugzilla.samba.org/show_bug.cgi?id=15919:
vfs_ceph_new should not use ceph_ll_nonblocking_readv_writev for fsync_send
- https://bugzilla.samba.org/show_bug.cgi?id=15921:
CTDB_SOCKET can be used even when CTDB_TEST_MODE is not set
- https://bugzilla.samba.org/show_bug.cgi?id=15926:
Samba 4.22 breaks Time Machine
- https://bugzilla.samba.org/show_bug.cgi?id=15927:
Spotlight search restriction for shares incomplete and default search
searches in too many attributes
- https://bugzilla.samba.org/show_bug.cgi?id=15931:
rpcd_mdssvc may crash because name mangling is not initialized
- https://bugzilla.samba.org/show_bug.cgi?id=15933:
Only increment lease epoch if a lease was granted
.
* new upstream security release:
- CVE-2025-9640: Uninitialized memory disclosure via vfs_streams_xattr
https://www.samba.org/samba/security/CVE-2025-9640.html
- CVE-2025-10230: Command injection via WINS server hook script
https://www.samba.org/samba/security/CVE-2025-10230.html
Checksums-Sha1:
f508c00b181b83e94a47b95e7d83ee16ce6dd194 5756 samba_4.22.6+dfsg-0+deb13u1.dsc
6931ebbbb07b627ac9d553d263a45ff1fa355cab 25638008 samba_4.22.6+dfsg.orig.tar.xz
c56ba23da76822ae4e2bf5642f692ac05b648aab 189184 samba_4.22.6+dfsg-0+deb13u1.debian.tar.xz
75a7d366cae8d08f8363a8ac82b24a36533594cf 5659 samba_4.22.6+dfsg-0+deb13u1_source.buildinfo
Checksums-Sha256:
796f47890e59beab9715f386fe2a6d4f70bfcbbec15b2d1120d9401b6269bdf7 5756 samba_4.22.6+dfsg-0+deb13u1.dsc
55cc4fd926f4fe5d0ceb5e9cd140229d813af752be798a39bfaabca56c5774d0 25638008 samba_4.22.6+dfsg.orig.tar.xz
22c78cb63e30741b1db3eaa2ac5859b2cc3b8fe764d9d2ce8f0e8ff4751a41dd 189184 samba_4.22.6+dfsg-0+deb13u1.debian.tar.xz
4f6c02a1753fb2154a3b9bde6e78923c982af0fbe26695f474fce0cda5b2d6fd 5659 samba_4.22.6+dfsg-0+deb13u1_source.buildinfo
Files:
85ff69682073a83927c570c8182d989e 5756 net optional samba_4.22.6+dfsg-0+deb13u1.dsc
13f6f5f8c3736490ee9fdb2fd61e6ede 25638008 net optional samba_4.22.6+dfsg.orig.tar.xz
b4f6b68aa34113b706db32a8fc4c9b0a 189184 net optional samba_4.22.6+dfsg-0+deb13u1.debian.tar.xz
39592613afd0d4de38b0c44fa4076666 5659 net optional samba_4.22.6+dfsg-0+deb13u1_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=3n6r
-----END PGP SIGNATURE-----
