Hi Stephane, or anyone else affected, I have some test packages that contain the fix:
get_cachename_from_process_env((env_probe && (arg->upcall_target == UPTARGET_APP || arg->upcall_target == UPTARGET_UNSPECIFIED)) ? arg->pid : 0); in the following ppa: https://launchpad.net/~mruffell/+archive/ubuntu/sf407276-regression-test Please note this package is NOT SUPPORTED by Canonical, and is for TESTING PURPOSES ONLY. ONLY Install in a dedicated test environment. Instructions to Install (On a focal, jammy, noble, oracular, plucky system): 1) sudo add-apt-repository ppa:mruffell/sf407276-regression-test 2) sudo apt update 3) sudo apt install cifs-utils 4) sudo apt-cache policy cifs-utils | grep Installed Check for +sf407276v20250531b1 Let me know if it fixes the issue. I am currently testing this in my own lab, will write back if it fixes for me as soon as I can reproduce. Bharath left me some notes, which I am following: Seems like this bug may affect following scenarios while using KRB5CCNAME env variable to explicitly specify the credential cache: 1) When kernel does not include the relevant change AND 2) The mount operation is performed with either of below: a) the filesystem is mounted by a non-root user via sudo and/or specified uid=!0, or b) the multiuser mount option specified, or c) the cruid mount option specified Thanks, Matthew -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2099914 Title: CVE-2025-2312 cifs.upcall could access incorrect kerberos credentials cache To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/cifs-utils/+bug/2099914/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
