Описание
ELSA-2020-1913: e2fsprogs security, bug fix, and enhancement update (MODERATE)
[1.45.4-3]
- Fix clang warning introduced in previous release (#1783777)
[1.45.4-2]
- Fix ABI breakage introduced in previous release (#1783777)
[1.45.4-1]
- Rebase to the release 1.45.4 (#1783777)
- provide rhel6/7 compatible fs_type in mke2fs.conf (#1780279)
- fix crafted ext4 partition leads to out-of-bounds write (#1768709)
- include note about supported rhel8 features and options (#1788573)
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
e2fsprogs
1.45.4-3.el8
e2fsprogs-devel
1.45.4-3.el8
e2fsprogs-libs
1.45.4-3.el8
libcom_err
1.45.4-3.el8
libcom_err-devel
1.45.4-3.el8
libss
1.45.4-3.el8
Oracle Linux x86_64
e2fsprogs
1.45.4-3.el8
e2fsprogs-devel
1.45.4-3.el8
e2fsprogs-libs
1.45.4-3.el8
libcom_err
1.45.4-3.el8
libcom_err-devel
1.45.4-3.el8
libss
1.45.4-3.el8
Связанные CVE
Связанные уязвимости
An exploitable code execution vulnerability exists in the quota file functionality of E2fsprogs 1.45.3. A specially crafted ext4 partition can cause an out-of-bounds write on the heap, resulting in code execution. An attacker can corrupt a partition to trigger this vulnerability.
An exploitable code execution vulnerability exists in the quota file functionality of E2fsprogs 1.45.3. A specially crafted ext4 partition can cause an out-of-bounds write on the heap, resulting in code execution. An attacker can corrupt a partition to trigger this vulnerability.
An exploitable code execution vulnerability exists in the quota file functionality of E2fsprogs 1.45.3. A specially crafted ext4 partition can cause an out-of-bounds write on the heap, resulting in code execution. An attacker can corrupt a partition to trigger this vulnerability.
An exploitable code execution vulnerability exists in the quota file f ...