Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2025-66002

Опубликовано: 08 янв. 2026
Источник: debian

Описание

An Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') vulnerability allows local users ton perform arbitrary unmounts via smb4k mount helper

Пакеты

ПакетСтатусВерсия исправленияРелизТип
smb4kfixed4.0.5-1package

Примечания

  • https://www.openwall.com/lists/oss-security/2025/12/10/6

  • Fixed by: https://invent.kde.org/network/smb4k/-/commit/0dea60194ab6eb8f6e34ca2e6cb0f97b90c46f1e

  • Fixed by: https://invent.kde.org/network/smb4k/-/commit/0aeabfa9d0f041479589dd855cbfe7cdebedfdb6 (4.0.5)

  • Bugfix: https://invent.kde.org/network/smb4k/-/commit/ffc6da7beb1879a968a8181372587ff71f247c1b (4.0.5)

  • Bugfix: https://invent.kde.org/network/smb4k/-/commit/55c535cbab6843c88cac033a21e43206b5eefbd0 (4.0.5)

  • bugfix: https://invent.kde.org/network/smb4k/-/commit/35f8cf121bfab276b739d4b8a866f8f3cdc0f7d1 (4.0.5)

Связанные уязвимости

ubuntu логотип

CVE-2025-66002

ubuntu
30 дней назад

An Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') vulnerability allows local users ton perform arbitrary unmounts via smb4k mount helper

nvd логотип

CVE-2025-66002

nvd
30 дней назад

An Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') vulnerability allows local users ton perform arbitrary unmounts via smb4k mount helper

github логотип

GHSA-g8f7-f2vp-fv6x

github
30 дней назад

An Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') vulnerability allows local users ton perform arbitrary unmounts via smb4k mount helper