[CLSA-2026:1781175722] samba: Fix of CVE-2026-4408
Type:
security
Severity:
Critical
Release date:
2026-06-11 11:04:15 UTC
Description:
- CVE-2026-4408: escape shell metacharacters in the client-controlled username before substituting it into the "check password script" via %u, preventing remote command injection
CVEs fixed:
Updated packages:
  • ctdb-4.13.3-5.el8_4.tuxcare.els10.x86_64.rpm
    sha:dc9f960e5c476a3523eaa7b76071fd68b2724ed5ee220596aca21f460ce5bfb0
  • ctdb-tests-4.13.3-5.el8_4.tuxcare.els10.x86_64.rpm
    sha:194016ae3b52fd1f398a083dfa401154b372fb1d72a3e9440c6f226d0b3dec26
  • libsmbclient-4.13.3-5.el8_4.tuxcare.els10.i686.rpm
    sha:117f2148655406e4abd0bf37644a2c6bb6987a8398ff334e437cb54822e68f4c
  • libsmbclient-4.13.3-5.el8_4.tuxcare.els10.x86_64.rpm
    sha:bff5f5016a96d70a7784ed68c24638ce9c51998336018875db51f90fef539928
  • libsmbclient-devel-4.13.3-5.el8_4.tuxcare.els10.i686.rpm
    sha:3b57b014a5db991735ca5fde6807522ecc5f330d6de767eee053ef7b1b031013
  • libsmbclient-devel-4.13.3-5.el8_4.tuxcare.els10.x86_64.rpm
    sha:ba9da7941c7cfd3c3a8472bedc20d23188abd420073a9a943732a820e1c952fa
  • libwbclient-4.13.3-5.el8_4.tuxcare.els10.i686.rpm
    sha:6520b3effa9350c58f49b3521a5eee1591200626d5eecb8b9f0f41b6e6a70481
  • libwbclient-4.13.3-5.el8_4.tuxcare.els10.x86_64.rpm
    sha:3f4c59a61c315772d7c8ce370a69223e7d35a211713e35186ecbe427b9eb90c7
  • libwbclient-devel-4.13.3-5.el8_4.tuxcare.els10.i686.rpm
    sha:2c8541e7dbd42bfab55825b335f80f66f73e135dfe0093625adeadd61f08e244
  • libwbclient-devel-4.13.3-5.el8_4.tuxcare.els10.x86_64.rpm
    sha:25eb5a485d4dc9073bc71cb38670251509955de083a853ee722b742c400a2059
  • python3-samba-4.13.3-5.el8_4.tuxcare.els10.i686.rpm
    sha:40a5ecbea5e04103e704257bcfc7853a35219e44e269b25141544b193e4c212d
  • python3-samba-4.13.3-5.el8_4.tuxcare.els10.x86_64.rpm
    sha:7844a84dec2f5e5087e893dc1ad1ac479c3fb360220fb033eaeac1295b1bc3c0
  • python3-samba-devel-4.13.3-5.el8_4.tuxcare.els10.i686.rpm
    sha:c01567cf75e8fb930ffd8270b4f0f74f1c6a9663bdbfb62f0ac5575b836d3b40
  • python3-samba-devel-4.13.3-5.el8_4.tuxcare.els10.x86_64.rpm
    sha:e150bf7fa295be03c196c71dcd22d34156a1be4946af6198f6b5252a6a66f909
  • python3-samba-test-4.13.3-5.el8_4.tuxcare.els10.x86_64.rpm
    sha:b03a1972e9681b4871538f79feb5ca2aa6885e9ed14944efa739d395f4e99788
  • samba-4.13.3-5.el8_4.tuxcare.els10.x86_64.rpm
    sha:8830e7123b80cfb3878caf2ea9c4ee66d682add3dd8b80b5c778276e65aa2201
  • samba-client-4.13.3-5.el8_4.tuxcare.els10.x86_64.rpm
    sha:28029d2946b8306c698e135a1aa6ea8f4a151432dec80c14c9ebfa03e2e6280f
  • samba-client-libs-4.13.3-5.el8_4.tuxcare.els10.i686.rpm
    sha:6bc5791df06e3d4ad918e6a2f8a6131fdba8885c1122fc9b3e70c26e0b2e7ef9
  • samba-client-libs-4.13.3-5.el8_4.tuxcare.els10.x86_64.rpm
    sha:7cf5284bc1a33389f5cae9fc775e33c977868ac51e105d7a6bf12109db83adc1
  • samba-common-4.13.3-5.el8_4.tuxcare.els10.noarch.rpm
    sha:76f3ed65e26e5ec7d894851fdd885011b65e5006320a2b9ea0c46d569cb51784
  • samba-common-libs-4.13.3-5.el8_4.tuxcare.els10.x86_64.rpm
    sha:0226c2d6ec68d52d8ff1f37f534c2c651f9a84d233872f41128281fead25ae7e
  • samba-common-tools-4.13.3-5.el8_4.tuxcare.els10.x86_64.rpm
    sha:ad64a8b7b878868e88e497a6af4906a5af266fec81872d8d416217e0a66ac969
  • samba-devel-4.13.3-5.el8_4.tuxcare.els10.i686.rpm
    sha:7189fafb0b3ac95a908e500ff817d4a5970612ee8631a05bb6c4667c1ce6ad7c
  • samba-devel-4.13.3-5.el8_4.tuxcare.els10.x86_64.rpm
    sha:aa2a1593df96124234afe7f5fe0da4a188e34757d5ee4d21d11dcf6f69a94fc0
  • samba-krb5-printing-4.13.3-5.el8_4.tuxcare.els10.x86_64.rpm
    sha:34e19fbbb69dd11592ccb7881eb70a34760b8d8d05a345bca1d2d0d864b19efb
  • samba-libs-4.13.3-5.el8_4.tuxcare.els10.i686.rpm
    sha:c8e2fe45c07fa8aae805fc10c14c4343a641d79b0813403fb58d352bbc844c69
  • samba-libs-4.13.3-5.el8_4.tuxcare.els10.x86_64.rpm
    sha:375f0ca03f665d6c1563eeae95d8aedebe73cfa87ef0ce822dee65e6b80a6f8a
  • samba-pidl-4.13.3-5.el8_4.tuxcare.els10.noarch.rpm
    sha:fe2664b9428257369d3a5aa7779b43a134ee24036796598b06569d8510a50dab
  • samba-test-4.13.3-5.el8_4.tuxcare.els10.x86_64.rpm
    sha:6983adbddb8dba3aa477dff44f45f0e05e0a8fe324c5ef2ee352e4c8b688385f
  • samba-test-libs-4.13.3-5.el8_4.tuxcare.els10.x86_64.rpm
    sha:b12b9b4fd8f18d6f6bb5525cedb21aa462f073c144be6358e43173aed9a1cbec
  • samba-vfs-glusterfs-4.13.3-5.el8_4.tuxcare.els10.x86_64.rpm
    sha:75c95e829b5cbb7aeafa6ad2c9377dab566a0d060ca94dcbef7aaee58f231a0a
  • samba-winbind-4.13.3-5.el8_4.tuxcare.els10.x86_64.rpm
    sha:87fd7318f86219c303917dfa4c2c52abf63ce4aa280b72548957196c2709f4d4
  • samba-winbind-clients-4.13.3-5.el8_4.tuxcare.els10.x86_64.rpm
    sha:223f078a9ebd5cdadc6bbfecaec87531ca9fb99923c4164c0b3d73b417f59141
  • samba-winbind-krb5-locator-4.13.3-5.el8_4.tuxcare.els10.x86_64.rpm
    sha:8628b80d5780d3655e27f938742a94c1b46107ebd163b3c0248aeab927ca46ba
  • samba-winbind-modules-4.13.3-5.el8_4.tuxcare.els10.i686.rpm
    sha:202c712adaf21a93bb4d804196d0e296c0a0fb81ef0c784443d17100a01ed079
  • samba-winbind-modules-4.13.3-5.el8_4.tuxcare.els10.x86_64.rpm
    sha:7719e20f8c275b38d42d9cfd4b61229a0273f2fb05ed437440de02bd4d94c3a4
  • samba-winexe-4.13.3-5.el8_4.tuxcare.els10.x86_64.rpm
    sha:db5fdc5a91b69a5074516562f3e96bf0ae1e9e9172be43218027c39422adaae4
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.