-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sat, 27 Dec 2025 10:40:36 +0100 Source: smb4k Binary: smb4k smb4k-dbgsym Architecture: amd64 Version: 4.0.0-1+deb13u1 Distribution: trixie-security Urgency: high Maintainer: amd64 / i386 Build Daemon (x86-csail-01) Changed-By: Salvatore Bonaccorso Description: smb4k - Samba (SMB) share advanced browser Closes: 1122381 Changes: smb4k (4.0.0-1+deb13u1) trixie-security; urgency=high . * Non-maintainer upload by the Security Team. * Fix two security issues in the KAuth mounthelper: - CVE-2025-66002: local users can perform arbitrary unmounts via smb4kmounthelper due to lack of input validation - CVE-2025-66003: local users can perform a local root exploit via smb4k mounthelper if they can access and control the contents of a Samba share (Closes: #1122381) * Merge Smb4KHardwareInterface class from master so that the merged security fixes can be compiled Checksums-Sha1: eb343fa2fc0d58405a70f33ecce6eebcd90119b0 12217188 smb4k-dbgsym_4.0.0-1+deb13u1_amd64.deb 564df7f16d1ddb8794e9a1fe123d9b37a97f0a84 21898 smb4k_4.0.0-1+deb13u1_amd64-buildd.buildinfo 66fbd707bdd625a80f2b59d3e61967a4409454aa 5114812 smb4k_4.0.0-1+deb13u1_amd64.deb Checksums-Sha256: f150c543cddefd2aa52ff63ef07ae53c2d5f93f807180213a0c3287e5ebe8390 12217188 smb4k-dbgsym_4.0.0-1+deb13u1_amd64.deb 88eb46e1e1024e16d3d7dc46b382b4e70d362547218d1f1acc09c58c792fd51b 21898 smb4k_4.0.0-1+deb13u1_amd64-buildd.buildinfo d2e6fe8dfba82d4584cc65b047d8cabc8090d26c4f9fc654a9b4f2e6b4772ae4 5114812 smb4k_4.0.0-1+deb13u1_amd64.deb Files: 8e7b85249c4587ac2826ed786f7ee9cc 12217188 debug optional smb4k-dbgsym_4.0.0-1+deb13u1_amd64.deb ecc04a99fb18687d0010e93382eda96c 21898 kde optional smb4k_4.0.0-1+deb13u1_amd64-buildd.buildinfo 3f03da4e4af0dd51fd77335b3ff02307 5114812 kde optional smb4k_4.0.0-1+deb13u1_amd64.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEXNeYFUF3FbHcrtSeIy3Pg040HrAFAmlVF0AACgkQIy3Pg040 HrDWiw/9FNepxJBI0tRibEUF8v8gtwuKAo4RTaRZXvfSAPxCv/XhkzSmhVVjCbbV ep7MB22hh2YhGIxAoNFj5tuuqon2jB/RmfG3J35Dm9iMr1RhjY6576ZSNHe3EPoF vCR/WPkOxSYRCzlBYELLlu2EMyGNUkMrnfiekJzRRbBudaoMnaodhtwLttw3zFtd 2f1Y/aupUPNsocFl1H1DuOMSzn94TTx3au0basel+8AdrVN5Xa5iCdU+BXgvbdg/ bKLJPUNKdxmSLbrbLLvmd/ldJLNh2throgubH9kAjBUzcDOxoZzcbrU5wCphpL44 lqmhEpx4EWUuSfJ57m2Rz3gL7vD9+kwzPfaq0HCsu1/BRZHbCWJude5xayilPthY iNJbYw62o/L7wM+iYr2i03bE9QqchwYwVdzQjhd1Ukp9KrquG3syWR6vDbRULajW 1YOO+K9vljJ/WoE7MyI9FW5sqyfzeepSEhhozrN5B/MdsjKdhN+trSEnIrOBjCL3 2E5EpyjQ6601x5j7+iPzud3rI3otSD+m8tszCC3xR8Uv88vjd4aqXd7uyO3VjkrQ tOHftfTx/0tqbvY7HwJWZkcpO7pwaP6NyKXpmqvjFutXmDnuwQ4wrrUno0x8Msg8 WtLKrLZsazBI9a+f8IPMmoVVabYNJAXgDm/w3OLTxGkcrx6zTvA= =NUaZ -----END PGP SIGNATURE-----