[CLSA-2026:1782977935] samba: Fix of CVE-2026-4408
Type:
security
Severity:
Critical
Release date:
2026-07-02 07:39:09 UTC
Description:
- CVE-2026-4408: Escape/mask client-controlled username before %u substitution in 'check password script' to prevent remote command execution; restrict _samr_ValidatePassword to DCs
CVEs fixed:
Updated packages:
  • libsmbclient-3.6.23-53.0.1.el6_10.tuxcare.ol.els7.i686.rpm
    sha:4088f65cc5aa3699d35cbbf8ab4af5fada42a87e325abf89efd7393a60f807e5
  • libsmbclient-3.6.23-53.0.1.el6_10.tuxcare.ol.els7.x86_64.rpm
    sha:575e65a7a3a4fa4d1e918541d41ef423dd5810190e69077713ff57265ce4c132
  • libsmbclient-devel-3.6.23-53.0.1.el6_10.tuxcare.ol.els7.i686.rpm
    sha:c9dde70c9c9194411a73f1b70235cd1528604fb306127e3b2e683c093999dc46
  • libsmbclient-devel-3.6.23-53.0.1.el6_10.tuxcare.ol.els7.x86_64.rpm
    sha:971b82dcd99eb25beb6d20877609756edcdca0fbd2cd408a710eb3cd434c1d8a
  • samba-3.6.23-53.0.1.el6_10.tuxcare.ol.els7.x86_64.rpm
    sha:4693ff7cca197df64525b0a2acab9520b3e4d8a4c7b050f9e04a361e929616e7
  • samba-client-3.6.23-53.0.1.el6_10.tuxcare.ol.els7.x86_64.rpm
    sha:eeba5e332baf316cb2a363dd48e78ad564d7b695aff8d5d2edf99eb99745c254
  • samba-common-3.6.23-53.0.1.el6_10.tuxcare.ol.els7.i686.rpm
    sha:b72eded57795d49053e7281635d270ebc86dd0802cd1876a17f684e7894eb7f2
  • samba-common-3.6.23-53.0.1.el6_10.tuxcare.ol.els7.x86_64.rpm
    sha:ee0a734cc60350bb54a587115fb22711fd45f473b4614eaafc8382a4a749f700
  • samba-doc-3.6.23-53.0.1.el6_10.tuxcare.ol.els7.x86_64.rpm
    sha:5daf4f51cf27a58528e1d0327acd42fd630c7ba17aa2c9d431caf847305aeb23
  • samba-domainjoin-gui-3.6.23-53.0.1.el6_10.tuxcare.ol.els7.x86_64.rpm
    sha:664624d807be2f61e6c06e05f80a0aa6054e09c2f6d4156b27e55ac18e1a9ce8
  • samba-glusterfs-3.6.23-53.0.1.el6_10.tuxcare.ol.els7.x86_64.rpm
    sha:618ff3403a1f1ce315e59c616ea5b5636e800a8b89fae7b6aa286a079ea61108
  • samba-swat-3.6.23-53.0.1.el6_10.tuxcare.ol.els7.x86_64.rpm
    sha:fc4d5480e6191105a37a97c910049a82714c74eca0d0b0a862be78115f8a8b23
  • samba-winbind-3.6.23-53.0.1.el6_10.tuxcare.ol.els7.x86_64.rpm
    sha:36b0f195b861458455aeee9fbaa92d549f2b995ec79a0eae469645b920eda438
  • samba-winbind-clients-3.6.23-53.0.1.el6_10.tuxcare.ol.els7.i686.rpm
    sha:3d09ffe13d66584427f994c9cec649c049d8ae9f100bc46816df5be0e156a73c
  • samba-winbind-clients-3.6.23-53.0.1.el6_10.tuxcare.ol.els7.x86_64.rpm
    sha:25cab4017657222ccfffe5f36d5d978f30bbc1f1cf430f02ba802993d8234d9a
  • samba-winbind-devel-3.6.23-53.0.1.el6_10.tuxcare.ol.els7.i686.rpm
    sha:8f2656160ad89c4138e2caa552634f6d608a7440b2e3b84098f3f1ca4a068618
  • samba-winbind-devel-3.6.23-53.0.1.el6_10.tuxcare.ol.els7.x86_64.rpm
    sha:ea2407894e90f100c6b4d33b8714a570aed846427d398464d7f52415b7b7fd7a
  • samba-winbind-krb5-locator-3.6.23-53.0.1.el6_10.tuxcare.ol.els7.x86_64.rpm
    sha:f779e5a202f82619b19a4b21aa82962b1670ab78aa73f4e2db8ef67ee48983ee
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.