-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sat, 27 Dec 2025 10:40:36 +0100 Source: smb4k Binary: smb4k smb4k-dbgsym Architecture: arm64 Version: 4.0.0-1+deb13u1 Distribution: trixie-security Urgency: high Maintainer: arm Build Daemon (arm-ubc-02) Changed-By: Salvatore Bonaccorso Description: smb4k - Samba (SMB) share advanced browser Closes: 1122381 Changes: smb4k (4.0.0-1+deb13u1) trixie-security; urgency=high . * Non-maintainer upload by the Security Team. * Fix two security issues in the KAuth mounthelper: - CVE-2025-66002: local users can perform arbitrary unmounts via smb4kmounthelper due to lack of input validation - CVE-2025-66003: local users can perform a local root exploit via smb4k mounthelper if they can access and control the contents of a Samba share (Closes: #1122381) * Merge Smb4KHardwareInterface class from master so that the merged security fixes can be compiled Checksums-Sha1: b8aee9a68fd60fbce9d323c88c3bff4535092cb8 12184404 smb4k-dbgsym_4.0.0-1+deb13u1_arm64.deb e888153e8c4446e5c44224147a5418afdf0c905b 21825 smb4k_4.0.0-1+deb13u1_arm64-buildd.buildinfo 4a66fd85004135c5351e57a4da54f5f6818ee7c7 5092992 smb4k_4.0.0-1+deb13u1_arm64.deb Checksums-Sha256: 729b7c8a07e959647c5860c050e7a2701fc3c0c8942e8b5b49641ef7cb3a22db 12184404 smb4k-dbgsym_4.0.0-1+deb13u1_arm64.deb 9a17c774f5efc9d92b2df39e5f76d38d6e4faf3102984278b5d8a8060ded1885 21825 smb4k_4.0.0-1+deb13u1_arm64-buildd.buildinfo 1e6bb9831273097844ed8b3be0eb79638d02fce885cd0e8b22f8bf719be73c7d 5092992 smb4k_4.0.0-1+deb13u1_arm64.deb Files: c6622044e5af5c19efc5e08ed50fa36b 12184404 debug optional smb4k-dbgsym_4.0.0-1+deb13u1_arm64.deb dfcb72abed3eeef597130f5e2aadb110 21825 kde optional smb4k_4.0.0-1+deb13u1_arm64-buildd.buildinfo 0e800881cd310ba6add147ed13030a0d 5092992 kde optional smb4k_4.0.0-1+deb13u1_arm64.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEbIns2iWsAAdAqh2MS/ZIXkV8oLAFAmlVF0gACgkQS/ZIXkV8 oLAvww//bJR4Uu8xLvl7MFww/JLJsro+kA4dsWhBDxbLHXTBr+WJaK5EUDK8l+4K cOR2a63wrz4G7nNMOS/ScvQCEDH73nOyTASg0SvGfeCNk367uM+cXevMN6o1Z77f Xas7UcmTRW2F1z6GbLnM6j775L/Eh5RyiPZJZ6oimhG7YXfy7ZDP3Sp2dBUETukn cJzPLF5kOXR+fkoMwDZlqhRxt8Oy/leXjQcfWPKN6wclCPpA9FvGtI77KCjDZkkM WCP0tZN/EnFyGg587yw+QKv7RMmgUZqSNaZfXhWwWCCydrdwsF++R4qhvxmufjNI +0JZ1UqSEZxACYL0bGDRKpjV6hNaZ7AjzSoOoPUnZcEtFowbtbYT7JSYfGXMykRv fyCX3Qqlub2SBNanVW+QMTqzqYhESskj7s4ri4hy3kq4V2GXRCVRMSWrW2C0U0Wn IaSUKaU/bs/r13HdMQUnfmpWkypejXSMmzRalZiQV16SY5CKt3Zu6krZccHSPV+B rN/eMVyetzuSsJh59NhaQ9dUkC91qt5bJ39/ELAH7EjWdv0ScCMO8FG8IfOgP4wh uWLRQksSOTZlqEMnfuoxVbYLisjyNQCzPOasQTSrZH1O8FF1eFBhSwZpHOeLrP9P DR2i1+aDDnAL6PsdcWf+Z4J6MABCpUBI4MgRuhLECjWjGPdQ1QA= =HzS7 -----END PGP SIGNATURE-----