{"id":"ALSA-2026:39575","summary":"Important: cifs-utils security, bug fix, and enhancement update","details":"The SMB/CIFS protocol is a standard file sharing protocol widely deployed on Microsoft Windows machines. The cifs-utils packages contain tools for mounting shares on Linux using the SMB/CIFS protocol. The tools in this package work in conjunction with support in the kernel to allow one to mount a SMB/CIFS share onto a client and use it as if it were a standard Linux file system.  \n\nSecurity Fix(es):  \n\n  * cifs-utils: local privilege escalation via forged cifs.spnego key description in cifs.upcall (CVE-2026-12505)\n\n\nBug Fix(es) and Enhancement(s):  \n\n  * add sssd method for mapping SID to UID/GID in man page of mount.cifs [almalinux-8.10.z] (JIRA:AlmaLinux-41059)\n  * Update the mount.cifs man page to match the 3*echo_interval reconnection timeout (JIRA:AlmaLinux-80397)\n  * cifs-utils: regression with kerberos mount [almalinux-8.10.z] (JIRA:AlmaLinux-192933)\n\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n","modified":"2026-07-15T12:00:04.922383871Z","published":"2026-07-15T00:00:00Z","related":["CVE-2026-12505"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2026:39575"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-12505"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2489805"},{"type":"ADVISORY","url":"https://errata.almalinux.org/8/ALSA-2026-39575.html"}],"affected":[{"package":{"name":"cifs-utils","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/cifs-utils"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"7.0-5.el8_10"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2026:39575.json"}},{"package":{"name":"cifs-utils-devel","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/cifs-utils-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"7.0-5.el8_10"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2026:39575.json"}},{"package":{"name":"pam_cifscreds","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/pam_cifscreds"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"7.0-5.el8_10"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2026:39575.json"}}],"schema_version":"1.7.5"}