ELSA-2024-12704

Опубликовано: 04 окт. 2024

Источник: oracle-oval

Платформа: Oracle Linux 7

Описание

ELSA-2024-12704: e2fsprogs security update (MODERATE)

[1.45.4-3.0.7]

libext2fs: add sanity check to extent manipulation (Srivathsa Dara) [Orabug: 37095032] {CVE-2022-1304}

Обновленные пакеты

Oracle Linux 7

Oracle Linux aarch64

e2fsprogs

1.45.4-3.0.7.el7

e2fsprogs-devel

1.45.4-3.0.7.el7

e2fsprogs-libs

1.45.4-3.0.7.el7

e2fsprogs-static

1.45.4-3.0.7.el7

libcom_err

1.45.4-3.0.7.el7

libcom_err-devel

1.45.4-3.0.7.el7

libss

1.45.4-3.0.7.el7

libss-devel

1.45.4-3.0.7.el7

Oracle Linux x86_64

e2fsprogs

1.45.4-3.0.7.el7

e2fsprogs-devel

1.45.4-3.0.7.el7

e2fsprogs-libs

1.45.4-3.0.7.el7

e2fsprogs-static

1.45.4-3.0.7.el7

libcom_err

1.45.4-3.0.7.el7

libcom_err-devel

1.45.4-3.0.7.el7

libss

1.45.4-3.0.7.el7

libss-devel

1.45.4-3.0.7.el7

Связанные CVE

CVE-2022-1304

Ссылки на источники

Связанные уязвимости

CVE-2022-1304

CVSS3: 7.8

ubuntu

около 3 лет назад

An out-of-bounds read/write vulnerability was found in e2fsprogs 1.46.5. This issue leads to a segmentation fault and possibly arbitrary code execution via a specially crafted filesystem.

CVE-2022-1304

CVSS3: 5.8

redhat

около 3 лет назад

An out-of-bounds read/write vulnerability was found in e2fsprogs 1.46.5. This issue leads to a segmentation fault and possibly arbitrary code execution via a specially crafted filesystem.

CVE-2022-1304

CVSS3: 7.8

nvd

около 3 лет назад

An out-of-bounds read/write vulnerability was found in e2fsprogs 1.46.5. This issue leads to a segmentation fault and possibly arbitrary code execution via a specially crafted filesystem.

CVE-2022-1304

CVSS3: 7.8

msrc

около 3 лет назад

Описание отсутствует

CVE-2022-1304

CVSS3: 7.8

debian

около 3 лет назад

An out-of-bounds read/write vulnerability was found in e2fsprogs 1.46. ...