ELSA-2012-0902

ULN >
Oracle Linux Errata repository >
ELSA-2012-0902

ELSA-2012-0902 - cifs-utils security, bug fix, and enhancement update

Type:	SECURITY
Impact:	LOW
Release Date:	2012-06-27

Description

[4.8.1-10]
- mount.cifs: don't allow unprivileged users to mount onto dirs they can't chdir into (bz 812782)

[4.8.1-9]
- cifs.upcall: use krb5_sname_to_principal to construct principal name (bz 805490)

[4.8.1-8]
- mount.cifs: add backupuid=/backupgid= mount options (bz 806337)

[4.8.1-7]
- RFE: Improve selection of SPNs with cifs.upcall (bz 748757)
- mount.cifs does not use KRB5_CONFIG (bz 748756)
[creates additional entries in /etc/mtab (bz 770004)]
- mount.cifs does not honor the uid/gid=username option, only the uid/gid=# option (bz 796463)

[4.8.1-6]
- undocumented mount.cifs options (bz 769923)

Related CVEs

CVE-2012-1586

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 6 (i386)	cifs-utils-4.8.1-10.el6.src.rpm	e91d1ebe1a74f8f7a4133fe8e0f807626b9059008720f34ce46397ec8c84d989	ELBA-2015-1366	ol6_i386_latest_archive
	cifs-utils-4.8.1-10.el6.src.rpm	e91d1ebe1a74f8f7a4133fe8e0f807626b9059008720f34ce46397ec8c84d989	ELBA-2015-1366	ol6_u3_i386_base
	cifs-utils-4.8.1-10.el6.i686.rpm	1e59fc38205ae81ddd147d7e4d086cedc3097810e001789fe1dca30f5a528840	ELBA-2015-1366	ol6_i386_latest_archive
	cifs-utils-4.8.1-10.el6.i686.rpm	1e59fc38205ae81ddd147d7e4d086cedc3097810e001789fe1dca30f5a528840	ELBA-2015-1366	ol6_u3_i386_base

Oracle Linux 6 (x86_64)	cifs-utils-4.8.1-10.el6.src.rpm	e91d1ebe1a74f8f7a4133fe8e0f807626b9059008720f34ce46397ec8c84d989	ELBA-2015-1366	ol6_u3_x86_64_base
	cifs-utils-4.8.1-10.el6.src.rpm	e91d1ebe1a74f8f7a4133fe8e0f807626b9059008720f34ce46397ec8c84d989	ELBA-2015-1366	ol6_x86_64_latest_archive
	cifs-utils-4.8.1-10.el6.x86_64.rpm	0bb86db71881a8bd4d6fa0f67acf7c214d074656c1274a3c50586feb44d9a78c	ELBA-2015-1366	ol6_u3_x86_64_base
	cifs-utils-4.8.1-10.el6.x86_64.rpm	0bb86db71881a8bd4d6fa0f67acf7c214d074656c1274a3c50586feb44d9a78c	ELBA-2015-1366	ol6_x86_64_latest_archive

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691