[CLSA-2026:1780054583] Fix CVE(s): CVE-2026-3039
Type:
security
Severity:
Important
Release date:
2026-05-29 11:36:28 UTC
Description:
* SECURITY UPDATE: GSS-API resource leak triggered by multi-round TKEY - debian/patches/CVE-2026-3039.patch: reject GSS_S_CONTINUE_NEEDED in dst_gssapi_acceptctx() and release the partial security context and gouttoken so they don't accumulate per malicious TKEY query. - CVE-2026-3039
Updated packages:
  • bind9_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els10_amd64.deb
    sha:99b2fdb1fe1f79d0c18ac91ca0fea1da288c6c3d
  • bind9-doc_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els10_all.deb
    sha:b019309afb55fbb7d96cf607ccd854b859895c08
  • bind9-host_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els10_amd64.deb
    sha:58a233cb6d31f588ac0e271fa5f7d2adc3a33490
  • bind9utils_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els10_amd64.deb
    sha:7c4777e54f90b51e4cd6f358b64fec6c74fe8de4
  • dnsutils_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els10_amd64.deb
    sha:1baa612adb8de6c5e6c4c85a8ec997b8e26a740f
  • host_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els10_all.deb
    sha:4aec4859b0b145e64781618b269210eb2d3ccecc
  • libbind-dev_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els10_amd64.deb
    sha:17c4f1815fc3f2a31c87f15875f882a14a2386e6
  • libbind-export-dev_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els10_amd64.deb
    sha:b8ca71c222921b6ee42180725268a9c4fe45d8b8
  • libbind9-140_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els10_amd64.deb
    sha:21f22cfe378cd28c94dab6747b0aa4846c55b4fe
  • libdns-export162_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els10_amd64.deb
    sha:d08e8d25de4feed0b3c298d93d50db7e479b1ae9
  • libdns162_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els10_amd64.deb
    sha:6e77308b5bd9c2092482af4c9943acd14d275d9c
  • libirs-export141_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els10_amd64.deb
    sha:7219d97ba02e88bd8102f62c18a630b2b568aa87
  • libirs141_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els10_amd64.deb
    sha:150a89b067c63b969b059a74fc6dbdc15d406308
  • libisc-export160_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els10_amd64.deb
    sha:f8da4f779cdbf2bea5550ebbef54a5056b743cd2
  • libisc160_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els10_amd64.deb
    sha:ae5f3817d85653b17e0742fa356e3bcd152b2d1b
  • libisccc-export140_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els10_amd64.deb
    sha:8e39d3acd395f100a42df091a1b273b033358f68
  • libisccc140_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els10_amd64.deb
    sha:f9509d0c1367591ecfa938245de481b510caf902
  • libisccfg-export140_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els10_amd64.deb
    sha:becabb0a8699f75a7f3387523196d6df0015d64e
  • libisccfg140_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els10_amd64.deb
    sha:aa899c4abee41e7a036f2e8265a16628f6b3d9b2
  • liblwres141_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els10_amd64.deb
    sha:49a4c8aa83febf4e9fc0f4bb81675dbc58d83a71
  • lwresd_9.10.3.dfsg.P4-8ubuntu1.19+tuxcare.els10_amd64.deb
    sha:92cd26fe8ccd6347b10915077ac61fc555058465
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.