[CLSA-2025:1762540530] Fix CVE(s): CVE-2020-10745, CVE-2022-42898
Type:
security
Severity:
Important
Release date:
2025-11-07 18:35:34 UTC
Description:
* SECURITY UPDATE: DNS string buffer overflow - debian/patches/CVE-2020-10745.patch: add input validation to prevent buffer overflows when handling DNS/NBT names with consecutive dots or exceeding RFC 1035 255-byte limit. The fix enforces proper bounds checking and component length validation in ndr_push_dns_string() and ndr_push_nbt_string() functions. - CVE-2020-10745 * SECURITY UPDATE: panic in krb5_pac_parse() - debian/patches/0001-Additional-fix-for-CVE-2022-42898.patch: check pointer for NULL - CVE-2022-42898
Updated packages:
  • ctdb_4.9.5+dfsg-5+deb10u5+tuxcare.els3_amd64.deb
    sha:f001bbada8e562a9f31c30d05aedbc08485925ee
  • libnss-winbind_4.9.5+dfsg-5+deb10u5+tuxcare.els3_amd64.deb
    sha:d74f0fc9845738de2f6a2f55399ac87af0007702
  • libpam-winbind_4.9.5+dfsg-5+deb10u5+tuxcare.els3_amd64.deb
    sha:d9d604a40086b8669961e18a63ef4b74381916cb
  • libsmbclient_4.9.5+dfsg-5+deb10u5+tuxcare.els3_amd64.deb
    sha:dec2413c88583f98fc9918474acff01971b6da53
  • libsmbclient-dev_4.9.5+dfsg-5+deb10u5+tuxcare.els3_amd64.deb
    sha:b43bed8471d854be1b2c1395614a55d66ea81bed
  • libwbclient-dev_4.9.5+dfsg-5+deb10u5+tuxcare.els3_amd64.deb
    sha:1e537e856113fc669787e7e28bbe07eab140c01a
  • libwbclient0_4.9.5+dfsg-5+deb10u5+tuxcare.els3_amd64.deb
    sha:80144999aae3acd623cc00d83eda40382eaa7317
  • python-samba_4.9.5+dfsg-5+deb10u5+tuxcare.els3_amd64.deb
    sha:21dec970918be44289365a24432748c520d1f716
  • registry-tools_4.9.5+dfsg-5+deb10u5+tuxcare.els3_amd64.deb
    sha:6674d7c2fd64e0aabdea27cc118f61b217d88675
  • samba_4.9.5+dfsg-5+deb10u5+tuxcare.els3_amd64.deb
    sha:0bf868b5a8ec1d76af30866eff72f7c7911c8502
  • samba-common_4.9.5+dfsg-5+deb10u5+tuxcare.els3_all.deb
    sha:5b50ee71ea66f73ce8a59278379188e80e0ac445
  • samba-common-bin_4.9.5+dfsg-5+deb10u5+tuxcare.els3_amd64.deb
    sha:3f4e9a98da7ebc7ff77863076ee22b599b1cf2a3
  • samba-dev_4.9.5+dfsg-5+deb10u5+tuxcare.els3_amd64.deb
    sha:e4240310db8b52f3549b4b5516a174a2908f5b6b
  • samba-dsdb-modules_4.9.5+dfsg-5+deb10u5+tuxcare.els3_amd64.deb
    sha:4bd5e1c6466a229bd91e449b2fcf2947b46645de
  • samba-libs_4.9.5+dfsg-5+deb10u5+tuxcare.els3_amd64.deb
    sha:710a7d1915b71226db35dcf6737b5a98ce4bf9aa
  • samba-testsuite_4.9.5+dfsg-5+deb10u5+tuxcare.els3_amd64.deb
    sha:4c9b0fc2ec1242074236a3439af745ddca8c0b66
  • samba-vfs-modules_4.9.5+dfsg-5+deb10u5+tuxcare.els3_amd64.deb
    sha:05b5741e720d8b9145533dca59590fa7af2db05c
  • smbclient_4.9.5+dfsg-5+deb10u5+tuxcare.els3_amd64.deb
    sha:3906ab3dae182ab8a225b4a9b0d59d904040136c
  • winbind_4.9.5+dfsg-5+deb10u5+tuxcare.els3_amd64.deb
    sha:ddb36176f218cd3a7d3a313187a71ced6e269a21
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.