CVE-2026-3012
Description
Important: samba security update
Predictions
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Mitigation details
Description samba: group policy certificate enrollment uses http:// without validation Red Hat statement Red Hat Product Security has rated this vulnerability as Important severity. However, exploitation requires several specific non-default conditions to be met. The vulnerable code path is only reachable when Samba Group Policy processing is explicitly enabled using the ```apply group policies =โฆ
Description
samba: group policy certificate enrollment uses http:// without validation
Red Hat statement
Red Hat Product Security has rated this vulnerability as Important severity. However, exploitation requires several specific non-default conditions to be met. The vulnerable code path is only reachable when Samba Group Policy processing is explicitly enabled using the ```apply group policies = yes``` configuration option and certificate auto-enrollment is configured through Group Policy. Hence, although the vulnerable code is present, it is not exploitable in default RHEL configurations. In addition, the attacker must have the ability to intercept or redirect adjacent-network HTTP traffic during certificate retrieval. Because exploitation depends on explicit administrative configuration changes and adjacent-network positioning, Red Hat assesses the attack complexity as High (AC:H).
CVSS v3: 8.0 (CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N)
Errata / fixed releases
| Product | Package | Advisory | Released |
|---|---|---|---|
| Red Hat Enterprise Linux 8 | samba-0:4.19.4-16.el8_10 | RHSA-2026:22644 | 2026-06-03T00:00:00Z |
| Red Hat Enterprise Linux 8 | samba-0:4.19.4-16.el8_10 | RHSA-2026:22644 | 2026-06-03T00:00:00Z |
Package state
| Product | Package | State |
|---|---|---|
| Red Hat Enterprise Linux 10 | samba | Affected |
| Red Hat Enterprise Linux 6 | samba | Out of support scope |
| Red Hat Enterprise Linux 6 | samba4 | Out of support scope |
| Red Hat Enterprise Linux 7 | samba | Affected |
| Red Hat Enterprise Linux 9 | samba | Affected |
| Red Hat OpenShift Container Platform 4 | rhcos | Affected |
Apply commands
yum update -y samba
# or:
dnf upgrade -y sambaAffected
| Vendor | Product | Version |
|---|---|---|
| redhat | Red Hat Enterprise Linux 10 | Affected |
| redhat | Red Hat Enterprise Linux 7 | Affected |
| redhat | Red Hat Enterprise Linux 9 | Affected |
| redhat | Red Hat OpenShift Container Platform 4 | Affected |
OS impact
SUSE Affected 1 release
| Version | Status | Fixed in |
|---|---|---|
| โ | Affected | โ |
Debian Mixed 5 releases
| Version | Status | Fixed in |
|---|---|---|
| trixie | Fixed | 2:4.22.8+dfsg-0+deb13u2 |
| sid | Fixed | 2:4.24.3+dfsg-1 |
| forky | Fixed | 2:4.24.3+dfsg-1 |
| bullseye | Affected | โ |
| bookworm | Fixed | 2:4.17.12+dfsg-0+deb12u4 |
AlmaLinux Fixed 1 release
| Version | Status | Fixed in |
|---|---|---|
| 8 | Fixed | samba-pidl-4.19.4-16.el8_10.noarch.rpm |
Red Hat Fixed 1 release
| Version | Status | Fixed in |
|---|---|---|
| 8 | Fixed | โ |
References
- https://access.redhat.com/security/cve/CVE-2026-3012
- https://bugzilla.redhat.com/show_bug.cgi?id=2447319
- https://bugzilla.samba.org/show_bug.cgi?id=16003
- https://www.suse.com/security/cve/CVE-2026-3012.html
- https://security-tracker.debian.org/tracker/CVE-2026-3012
- https://access.redhat.com/errata/RHSA-2026:22644
- https://bugzilla.redhat.com/2447319
- https://bugzilla.redhat.com/2452232
- https://bugzilla.redhat.com/2479762
- https://errata.almalinux.org/8/ALSA-2026-22644.html
CWEs
CWE-345
Community-verified mitigations for this CVE will appear above when contributors publish them.
Verify integrity in audit chain (admin only). AS-IS.