[Deepin Integration]~[v25-Release] fix: fix CVE-2025-10230 WINS hook shell command injection vulnerability by Zeno-sole@deepin-community/samba by deepin-community-ci-bot[bot]

### Package information | 软件包信息

包名 | 版本
--  | --
samba | [2:4.19.5+dfsg-1deepin5](https://github.com/deepin-community/samba/commit/58fff19f1aea05b8b2096a5258370f6a3341efa2)

### Package repository address | 软件包仓库地址

    deb [trusted=yes] https://ci.deepin.com/repo/obs/deepin:/CI:/TestingIntegration:/test-integration-pr-3754/testing/ ./

### Changelog | 更新信息

#### samba (2:4.19.5+dfsg-1deepin5) unstable; urgency=high

  * Fix CVE-2025-10230: WINS hook shell command injection vulnerability
    - Add validation for WINS names before passing to wins hook script
    - Prevent arbitrary command execution through malicious NetBIOS names
    - Restrict valid characters to letters, digits, hyphens, underscores and periods
    - Add test cases to verify the fix




Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Deepin Integration]~[v25-Release] fix: fix CVE-2025-10230 WINS hook shell command injection vulnerability by Zeno-sole@deepin-community/samba by deepin-community-ci-bot[bot] #12931

Package information | 软件包信息

Package repository address | 软件包仓库地址

Changelog | 更新信息

samba (2:4.19.5+dfsg-1deepin5) unstable; urgency=high

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

[Deepin Integration]~[v25-Release] fix: fix CVE-2025-10230 WINS hook shell command injection vulnerability by Zeno-sole@deepin-community/samba by deepin-community-ci-bot[bot] #12931

Description

Package information | 软件包信息

Package repository address | 软件包仓库地址

Changelog | 更新信息

samba (2:4.19.5+dfsg-1deepin5) unstable; urgency=high

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions