Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2019-2178

Опубликовано: 13 авг. 2019
Источник: oracle-oval
Платформа: Oracle Linux 7

Описание

ELSA-2019-2178: udisks2 security, bug fix, and enhancement update (MODERATE)

[2.7.3-9]

  • Build udisks2-lsm subpackage (#1672664)
  • Fix sigint source removal on daemon exit (#1643350)
  • CVE-2018-17336: Fix format string vulnerability in udisks_log (#1637427)
  • Describe command options in the udisksctl man page (#1568269)

Обновленные пакеты

Oracle Linux 7

Oracle Linux aarch64

libudisks2

2.7.3-9.el7

libudisks2-devel

2.7.3-9.el7

udisks2

2.7.3-9.el7

udisks2-iscsi

2.7.3-9.el7

udisks2-lsm

2.7.3-9.el7

udisks2-lvm2

2.7.3-9.el7

Oracle Linux x86_64

libudisks2

2.7.3-9.el7

libudisks2-devel

2.7.3-9.el7

udisks2

2.7.3-9.el7

udisks2-iscsi

2.7.3-9.el7

udisks2-lsm

2.7.3-9.el7

udisks2-lvm2

2.7.3-9.el7

Связанные CVE

CVE-2018-17336

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2018-17336

CVSS3: 7.8
ubuntu
больше 7 лет назад

UDisks 2.8.0 has a format string vulnerability in udisks_log in udiskslogging.c, allowing attackers to obtain sensitive information (stack contents), cause a denial of service (memory corruption), or possibly have unspecified other impact via a malformed filesystem label, as demonstrated by %d or %n substrings.

redhat логотип

CVE-2018-17336

CVSS3: 7.5
redhat
больше 7 лет назад

UDisks 2.8.0 has a format string vulnerability in udisks_log in udiskslogging.c, allowing attackers to obtain sensitive information (stack contents), cause a denial of service (memory corruption), or possibly have unspecified other impact via a malformed filesystem label, as demonstrated by %d or %n substrings.

nvd логотип

CVE-2018-17336

CVSS3: 7.8
nvd
больше 7 лет назад

UDisks 2.8.0 has a format string vulnerability in udisks_log in udiskslogging.c, allowing attackers to obtain sensitive information (stack contents), cause a denial of service (memory corruption), or possibly have unspecified other impact via a malformed filesystem label, as demonstrated by %d or %n substrings.

debian логотип

CVE-2018-17336

CVSS3: 7.8
debian
больше 7 лет назад

UDisks 2.8.0 has a format string vulnerability in udisks_log in udisks ...

suse-cvrf логотип

openSUSE-SU-2018:3372-1

suse-cvrf
больше 7 лет назад

Security update for udisks2