UbuntuUpdates.org

Package "samba"

Name: samba

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • clustered database to store temporary data
  • LDAP-like embedded database - tools
  • tools for viewing and manipulating the Windows registry
  • Samba control files to run AD Domain Controller
Latest version: 2:4.23.6+dfsg-1ubuntu2.1
Release: resolute (26.04)
Level: security
Repository: universe

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Other versions of "samba" in Resolute

Repository Area Version
base main 2:4.23.6+dfsg-1ubuntu2
base universe 2:4.23.6+dfsg-1ubuntu2
security main 2:4.23.6+dfsg-1ubuntu2.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 2:4.23.6+dfsg-1ubuntu2.1 2026-05-26 16:07:38 UTC

  samba (2:4.23.6+dfsg-1ubuntu2.1) resolute-security; urgency=medium

  * SECURITY UPDATE: May 2026 security updates
    - debian/patches/security-202605-*.patch
    - CVE-2026-1933 - Missing access checks on reparse point operations
    - CVE-2026-2340 - WORM vfs module does not block overwrites
    - CVE-2026-3012 - auto-enrolment GPO installing CA certificate over
                      http without verification
    - CVE-2026-3238 - Denial of service against AD DC WINS server
    - CVE-2026-4408 - Unauthenticated Remote Code Execution in Samba
                      DCE/RPC SAMR server
    - CVE-2026-4480 - Unauthenticated Remote Code Execution in Samba
                      printing subsystem

 -- Marc Deslauriers <email address hidden> Thu, 21 May 2026 12:27:46 -0400
CVE-2026-1933 Missing access check on reparse point operations
CVE-2026-2340 vfs_worm does not block directory modification
CVE-2026-3012 group policy certificate enrollment uses http:// without validation
CVE-2026-3238 unauthenticated udp packet crashes AD DC nbt server
CVE-2026-4408 Remote Code Execution in SAMR when check password script contains %u substitution placeholder
CVE-2026-4480 Unauthenticated Remote Code Execution using print command


About   -   Send Feedback to @ubuntu_updates