cifs-utils - Debian Package Tracker

general

source: cifs-utils (main)
version: 2:6.11-2
maintainer: Debian Samba Maintainers (archive) (DMD)
uploaders: Steve Langasek [DMD] – Mathieu Parent [DMD] – Noèl Köthe [DMD] – Jelmer Vernooĳ [DMD]
std-ver: 4.5.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

oldstable: 2:6.7-1
stable: 2:6.8-2
testing: 2:6.11-1
unstable: 2:6.11-2

versioned links

2:6.7-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2:6.8-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2:6.11-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2:6.11-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

cifs-utils (22 bugs: 0, 19, 3, 0)

action needed

A new upstream version is available: 6.13 high

A new upstream version 6.13 is available, you should consider packaging it.

Created: 2021-01-04 Last update: 2021-04-23 14:35

2 security issues in stretch high

There are 2 open security issues in stretch.

1 important issue:

CVE-2021-20208: A flaw was found in cifs-utils in versions before 6.13. A user when mounting a krb5 CIFS file system from within a container can use Kerberos credentials of the host. The highest threat from this vulnerability is to data confidentiality and integrity.

1 issue postponed or untriaged:

CVE-2020-14342: (needs triaging) It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password, which could be used to inject arbitrary commands. An attacker able to invoke mount.cifs with special permission, such as via sudo rules, could use this flaw to escalate their privileges.

Created: 2021-04-20 Last update: 2021-04-21 16:04

1 security issue in sid high

There is 1 open security issue in sid.

1 important issue:

CVE-2021-20208: A flaw was found in cifs-utils in versions before 6.13. A user when mounting a krb5 CIFS file system from within a container can use Kerberos credentials of the host. The highest threat from this vulnerability is to data confidentiality and integrity.

Created: 2021-04-20 Last update: 2021-04-21 16:04

2 security issues in buster high

There are 2 open security issues in buster.

1 important issue:

CVE-2021-20208: A flaw was found in cifs-utils in versions before 6.13. A user when mounting a krb5 CIFS file system from within a container can use Kerberos credentials of the host. The highest threat from this vulnerability is to data confidentiality and integrity.

1 issue left for the package maintainer to handle:

CVE-2020-14342: (needs triaging) It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password, which could be used to inject arbitrary commands. An attacker able to invoke mount.cifs with special permission, such as via sudo rules, could use this flaw to escalate their privileges.

You can find information about how to handle this issue in the security team's documentation.

Created: 2021-02-19 Last update: 2021-04-21 16:04

1 security issue in bullseye high

There is 1 open security issue in bullseye.

1 important issue:

CVE-2021-20208: A flaw was found in cifs-utils in versions before 6.13. A user when mounting a krb5 CIFS file system from within a container can use Kerberos credentials of the host. The highest threat from this vulnerability is to data confidentiality and integrity.

Created: 2021-04-20 Last update: 2021-04-21 16:04

Fails to build during reproducibility testing normal

A package building reproducibly enables third parties to verify that the source matches the distributed binaries. It has been identified that this source package produced different results, failed to build or had other issues in a test environment. Please read about how to improve the situation!

Created: 2021-03-30 Last update: 2021-04-23 15:31

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.5.1 instead of 4.5.0).

Created: 2020-11-17 Last update: 2021-04-17 22:36

testing migrations

excuses:
- Migration status for cifs-utils (2:6.11-1 to 2:6.11-2): BLOCKED: Needs an approval (either due to a freeze, the source suite or a manual hint)
- Issues preventing migration:
- blocked by freeze: is a key package (Follow the freeze policy when applying for an unblock)
- Too young, only 5 of 20 days old
- Additional info:
- Piuparts tested OK - https://piuparts.debian.org/sid/source/c/cifs-utils.html
- Not considered

news

[rss feed]

[2021-04-17] Accepted cifs-utils 2:6.11-2 (source) into unstable (Mathieu Parent)
[2020-11-18] cifs-utils 2:6.11-1 MIGRATED to testing (Debian testing watch)
[2020-11-18] cifs-utils 2:6.11-1 MIGRATED to testing (Debian testing watch)
[2020-11-13] Accepted cifs-utils 2:6.11-1 (source) into unstable (Mathieu Parent)
[2019-09-03] cifs-utils 2:6.9-1 MIGRATED to testing (Debian testing watch)
[2019-08-29] Accepted cifs-utils 2:6.9-1 (source) into unstable (Mathieu Parent)
[2018-06-23] cifs-utils 2:6.8-2 MIGRATED to testing (Debian testing watch)
[2018-06-17] Accepted cifs-utils 2:6.8-2 (source amd64) into unstable (Mathieu Parent)
[2018-04-04] cifs-utils 2:6.8-1 MIGRATED to testing (Debian testing watch)
[2018-03-29] Accepted cifs-utils 2:6.8-1 (source amd64) into unstable (Mathieu Parent)
[2017-03-14] cifs-utils 2:6.7-1 MIGRATED to testing (Debian testing watch)
[2017-03-08] Accepted cifs-utils 2:6.7-1 (source amd64) into unstable (Mathieu Parent)
[2017-01-18] cifs-utils 2:6.6-5 MIGRATED to testing (Debian testing watch)
[2017-01-07] Accepted cifs-utils 2:6.6-5 (source amd64) into unstable (Jelmer Vernooĳ)
[2016-12-26] cifs-utils 2:6.6-4 MIGRATED to testing (Debian testing watch)
[2016-12-16] Accepted cifs-utils 2:6.6-4 (source amd64) into unstable (Mathieu Parent)
[2016-12-16] Accepted cifs-utils 2:6.6-3 (source amd64) into unstable (Mathieu Parent)
[2016-12-07] cifs-utils 2:6.6-2 MIGRATED to testing (Debian testing watch)
[2016-12-01] Accepted cifs-utils 2:6.6-2 (source amd64) into unstable (Mathieu Parent)
[2016-09-15] cifs-utils 2:6.6-1 MIGRATED to testing (Debian testing watch)
[2016-09-09] Accepted cifs-utils 2:6.6-1 (source amd64) into unstable (Mathieu Parent)
[2016-05-09] cifs-utils 2:6.5-2 MIGRATED to testing (Debian testing watch)
[2016-05-03] Accepted cifs-utils 2:6.5-2 (source amd64) into unstable (Mathieu Parent)
[2016-04-30] cifs-utils 2:6.5-1 MIGRATED to testing (Debian testing watch)
[2016-04-25] Accepted cifs-utils 2:6.5-1 (source amd64) into unstable (Jelmer Vernooij) (signed by: Jelmer Vernooĳ)
[2014-07-22] cifs-utils 2:6.4-1 MIGRATED to testing (Britney)
[2014-07-17] Accepted cifs-utils 2:6.4-1 (source amd64) (Jelmer Vernooij)
[2014-04-05] cifs-utils 2:6.3-1 MIGRATED to testing (Debian testing watch)
[2014-03-30] Accepted cifs-utils 2:6.3-1 (source amd64) (Jelmer Vernooij)
[2013-08-22] cifs-utils 2:6.1-1 MIGRATED to testing (Debian testing watch)

bugs [bug history graph]

all: 26
RC: 0
I&N: 23
M&W: 3
F&P: 0
patch: 0

links

homepage
buildd: logs, clang, reproducibility, cross
popcon
browse source code
edit tags
other distros
security tracker
screenshots

ubuntu

[Information about Ubuntu for Debian Developers]

version: 2:6.11-1ubuntu1
52 bugs
patches for 2:6.11-1ubuntu1