cifs-utils-7.0-5.el8_10

エラータID: AXSA:2026-1282:04

Release date: 
Friday, July 17, 2026 - 16:52
Subject: 
cifs-utils-7.0-5.el8_10
Affected Channels: 
Asianux Server 8 for x86_64
Severity: 
High
Description: 

The SMB/CIFS protocol is a standard file sharing protocol widely deployed on Microsoft Windows machines. The cifs-utils packages contain tools for mounting shares on Linux using the SMB/CIFS protocol. The tools in this package work in conjunction with support in the kernel to allow one to mount a SMB/CIFS share onto a client and use it as if it were a standard Linux file system.

Security Fix(es):

* cifs-utils: local privilege escalation via forged cifs.spnego key description in cifs.upcall (CVE-2026-12505)

Bug Fix(es) and Enhancement(s):

* add sssd method for mapping SID to UID/GID in man page of mount.cifs [rhel-8.10.z] (JIRA:RHEL-41059)
* Update the mount.cifs man page to match the 3*echo_interval reconnection timeout (JIRA:RHEL-80397)
* cifs-utils: regression with kerberos mount [rhel-8.10.z] (JIRA:RHEL-192933)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2026-12505
A flaw was found in the cifs-utils package where the cifs.upcall helper fails to securely drop its root privileges before looking up user information inside a user-controlled environment. A local, low privileged attacker can exploit this by using a crafted request_key payload to trick the root-owned helper into entering a custom environment (namespace) containing a malicious NSS module. This forces the system to load the attacker's controlled NSS Module and configuration, allowing them to execute arbitrary commands as the root user, elevating their privileges and fully compromising the system.

Solution: 

Update packages.

Additional Info: 

N/A

Download: 

SRPMS
  1. cifs-utils-7.0-5.el8_10.src.rpm
    MD5: f61271b0ee90505b61c7a183c6a40e2c
    SHA-256: 27879b6247e00db80266e705bfc5395087569468514b6b14f4b8d00ef270b5b9
    Size: 440.96 kB

Asianux Server 8 for x86_64
  1. cifs-utils-7.0-5.el8_10.x86_64.rpm
    MD5: 425e619127e45bb6bfdb97c7914bb797
    SHA-256: c3cbfa717f736f72e50f5203f8e05115f9988549e344c5ce48fdd8206d23caf0
    Size: 114.67 kB
  2. cifs-utils-devel-7.0-5.el8_10.i686.rpm
    MD5: c1be5d318d4c718b258881b2469c9308
    SHA-256: 28f05ad74a66524b7e48274612c26fc15d7d449581673aaf4ea9433d4bf5884e
    Size: 18.48 kB
  3. cifs-utils-devel-7.0-5.el8_10.x86_64.rpm
    MD5: 6305df6df311bf05c0d7ac7b6814a9a6
    SHA-256: 05a2daad4dee5ed09a4487067b155d663cc4f8d19249adc8ca2e0ea441d4a1e1
    Size: 18.45 kB
  4. pam_cifscreds-7.0-5.el8_10.x86_64.rpm
    MD5: 70e1b0f889cf9e260a70398dbc7319b2
    SHA-256: 3ef7822151a1d654e0decd229f0ee1c0404d694c10db6e3ab1d2ab58b22b90ef
    Size: 26.16 kB