[CLSA-2026:1780054328] Fix CVE(s): CVE-2026-3039
Type:
security
Severity:
Important
Release date:
2026-05-29 11:32:13 UTC
Description:
* SECURITY UPDATE: GSS-API resource leak triggered by multi-round TKEY - debian/patches/CVE-2026-3039.patch: reject GSS_S_CONTINUE_NEEDED in dst_gssapi_acceptctx() and release the partial security context and gouttoken so they don't accumulate per malicious TKEY query. - CVE-2026-3039
Updated packages:
  • bind9_9.11.3+dfsg-1ubuntu1.18+tuxcare.els7_amd64.deb
    sha:3b016704343fcccdfb842f280f3ea075991dac69
  • bind9-doc_9.11.3+dfsg-1ubuntu1.18+tuxcare.els7_all.deb
    sha:f97c6479a76b138fecf45123f1e8dc02e0069981
  • bind9-host_9.11.3+dfsg-1ubuntu1.18+tuxcare.els7_amd64.deb
    sha:27f97f61d75a944fbc4945cff4cf602f2ef1ed4a
  • bind9utils_9.11.3+dfsg-1ubuntu1.18+tuxcare.els7_amd64.deb
    sha:410fc00c7c2d9c164a989a0c5c7ca1dc8843dbd3
  • dnsutils_9.11.3+dfsg-1ubuntu1.18+tuxcare.els7_amd64.deb
    sha:5d5e8cc90b19e89bc20c8d7ee3efa67d1ec44c52
  • libbind-dev_9.11.3+dfsg-1ubuntu1.18+tuxcare.els7_amd64.deb
    sha:bf2e5068dea5584196510d7a5b8feb17245375b3
  • libbind-export-dev_9.11.3+dfsg-1ubuntu1.18+tuxcare.els7_amd64.deb
    sha:20fc4ea3707572ec30939f334ee4718a70d0c12b
  • libbind9-160_9.11.3+dfsg-1ubuntu1.18+tuxcare.els7_amd64.deb
    sha:44e32f8eb310cfeb90128d8a62d3afda8e7d2636
  • libdns-export1100_9.11.3+dfsg-1ubuntu1.18+tuxcare.els7_amd64.deb
    sha:c8d4aa98b27fe55545a4ada5248f6b728ec9f739
  • libdns1100_9.11.3+dfsg-1ubuntu1.18+tuxcare.els7_amd64.deb
    sha:694cb514927d3b709b323c949cdb91c82b2d9d70
  • libirs-export160_9.11.3+dfsg-1ubuntu1.18+tuxcare.els7_amd64.deb
    sha:854fc51705571018024ea5202f2feb31f0632307
  • libirs160_9.11.3+dfsg-1ubuntu1.18+tuxcare.els7_amd64.deb
    sha:65b9e438baec372768bf4bbaf311523ef18966c9
  • libisc-export169_9.11.3+dfsg-1ubuntu1.18+tuxcare.els7_amd64.deb
    sha:34e04660dd93be2643c67316114c6131eab8deca
  • libisc169_9.11.3+dfsg-1ubuntu1.18+tuxcare.els7_amd64.deb
    sha:b7ae5d255c5d81f2c39c3ce057995166f37fecb6
  • libisccc-export160_9.11.3+dfsg-1ubuntu1.18+tuxcare.els7_amd64.deb
    sha:2b5474f7e5aed1f0d1a47c8a0d60f3cc9a26d1e6
  • libisccc160_9.11.3+dfsg-1ubuntu1.18+tuxcare.els7_amd64.deb
    sha:3a6a6e3e91f88fe0a56c3fab64b4be95067af6c0
  • libisccfg-export160_9.11.3+dfsg-1ubuntu1.18+tuxcare.els7_amd64.deb
    sha:439a6c9ef48338ee96c3ffa901991699e6bf4be5
  • libisccfg160_9.11.3+dfsg-1ubuntu1.18+tuxcare.els7_amd64.deb
    sha:57f0bb17469b9010566c0f44f476f81905125816
  • liblwres160_9.11.3+dfsg-1ubuntu1.18+tuxcare.els7_amd64.deb
    sha:33abcad481ad069cabd73cac495887c23c32157a
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.