[CLSA-2026:1773073974] Fix CVE(s): CVE-2025-10230
Type:
security
Severity:
Critical
Release date:
2026-03-09 16:32:59 UTC
Description:
* SECURITY UPDATE: command injection via improper NetBIOS name validation in shell hook handling (CVE) - debian/patches/CVE-2025-10230-1.patch: Validate NetBIOS names before passing them to hook shell command, rejecting characters outside alphanumeric, dot, underscore, or hyphen. Prevent command injection caused by untrusted names containing shell metacharacters. - debian/patches/CVE-2025-10230-2.patch: Add selftest verifying WINS hook skip invocation for registered names containing shell metacharacters; issue stem from unsafe name handling allowing hook execution with untrusted, potentially command-injecting name strings. - CVE-2025-10230
Updated packages:
  • ctdb_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els9_amd64.deb
    sha:a7bf4c8f954079367ba9f3d869d6bcd964cf19fd
  • libnss-winbind_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els9_amd64.deb
    sha:8aa55c23f82818fb32e3c251c529174daa35620a
  • libpam-winbind_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els9_amd64.deb
    sha:0156811ec0c69ba7c290e23c4b91ee08ce68d0cd
  • libparse-pidl-perl_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els9_amd64.deb
    sha:a7fcd2a0212f3fe27aa0ca7b264674af655eeb4f
  • libsmbclient_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els9_amd64.deb
    sha:e16f7bab0d84042ebc00b7d43ab440a149c60a5c
  • libsmbclient-dev_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els9_amd64.deb
    sha:3201ba927ee60e435aa94426482e4cd9bace746c
  • libwbclient-dev_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els9_amd64.deb
    sha:f4a1060ba92fec92201e3ca22d98bd7848d8e624
  • libwbclient0_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els9_amd64.deb
    sha:fa43cdf70f4e5f6ea780df71a89afd82a0164b05
  • python-samba_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els9_amd64.deb
    sha:0804aaa59ce6e5930bd31ae94cbfe0daeaed48a9
  • registry-tools_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els9_amd64.deb
    sha:6e34068d698fc1bb3161b7bbb352e28025053c3e
  • samba_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els9_amd64.deb
    sha:b3d48e453755a775d274f2413255b5ddba9a280b
  • samba-common_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els9_all.deb
    sha:118f11b0ca30c570406575e32a421ab11dd50085
  • samba-common-bin_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els9_amd64.deb
    sha:34382fcf3da57c00f176b313849a9841cc15ffb9
  • samba-dev_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els9_amd64.deb
    sha:4183bafef8ac505c1e67e0449bb6663e0a2885a5
  • samba-dsdb-modules_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els9_amd64.deb
    sha:6ef652f6b754afeff32dbf73325e4482db6cb316
  • samba-libs_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els9_amd64.deb
    sha:6823e4318876052690f2c584a8c7b8aea6002b7c
  • samba-testsuite_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els9_amd64.deb
    sha:57c341c9443d5ebe1d6bb2f521f0f974d3237f28
  • samba-vfs-modules_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els9_amd64.deb
    sha:6417b5158a163e3b1f44f747a7300f5e1b2ae1b9
  • smbclient_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els9_amd64.deb
    sha:1ff0662256b3f947c36f5c4c723438c84d582bde
  • winbind_4.3.11+dfsg-0ubuntu0.16.04.34+tuxcare.els9_amd64.deb
    sha:0672d62de73045b4efc38e415faa3762291c8b0a
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.