[Buildroot] [PATCH for 2025.02.x] package/samba4: security bump to v4.21.9
Titouan Christophe
titouan.christophe at mind.be
Mon Oct 20 10:46:54 UTC 2025
As explained in the announcement:
https://www.samba.org/samba/history/samba-4.21.9.html
This fixes the following vulnerabilities:
- CVE-2025-9640: Uninitialized memory disclosure via vfs_streams_xattr.
https://www.samba.org/samba/security/CVE-2025-9640.html
- CVE-2025-10230: Command injection via WINS server hook script.
https://www.samba.org/samba/security/CVE-2025-10230.html
Signed-off-by: Titouan Christophe <titouan.christophe at mind.be>
---
package/samba4/samba4.hash | 4 ++--
package/samba4/samba4.mk | 2 +-
2 files changed, 3 insertions(+), 3 deletions(-)
diff --git a/package/samba4/samba4.hash b/package/samba4/samba4.hash
index 9fff75bcb4..ae37e497cc 100644
--- a/package/samba4/samba4.hash
+++ b/package/samba4/samba4.hash
@@ -1,4 +1,4 @@
# Locally calculated after checking pgp signature
-# https://download.samba.org/pub/samba/stable/samba-4.21.8.tar.asc
-sha256 e78c36653a37e9647513e5408fc8052375901560d36b8744cd21acc9e4d91fc8 samba-4.21.8.tar.gz
+# https://download.samba.org/pub/samba/stable/samba-4.21.9.tar.asc
+sha256 9d60206efb450c08700a85504ec2b63257be7c6e1c393627da54e047b4e9ea75 samba-4.21.9.tar.gz
sha256 8ceb4b9ee5adedde47b31e975c1d90c73ad27b6b165a1dcd80c7c545eb65b903 COPYING
diff --git a/package/samba4/samba4.mk b/package/samba4/samba4.mk
index 7895ec4a4c..c2886d9ea7 100644
--- a/package/samba4/samba4.mk
+++ b/package/samba4/samba4.mk
@@ -4,7 +4,7 @@
#
################################################################################
-SAMBA4_VERSION = 4.21.8
+SAMBA4_VERSION = 4.21.9
SAMBA4_SITE = https://download.samba.org/pub/samba/stable
SAMBA4_SOURCE = samba-$(SAMBA4_VERSION).tar.gz
SAMBA4_INSTALL_STAGING = YES
--
2.51.0
More information about the buildroot
mailing list