Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2015:2383-1

Опубликовано: 28 дек. 2015
Источник: suse-cvrf

Описание

Security update for xfsprogs

xfsprogs was updated to fix one security vulnerability and several bugs.

  • Handle unwanted data disclosure in xfs_metadump (bsc#939367, CVE-2012-2150)
  • Fix segfault during xfs_repair run (bsc#911866)
  • Fix definition of leaf attribute block to avoid gcc optimization xfsprogs-fix-leaf-block-definition

Список пакетов

SUSE Linux Enterprise Desktop 11 SP3
xfsprogs-3.1.8-0.7.1
SUSE Linux Enterprise Desktop 11 SP4
xfsprogs-3.1.8-0.7.1
SUSE Linux Enterprise Server 11 SP3
xfsprogs-3.1.8-0.7.1
SUSE Linux Enterprise Server 11 SP3-TERADATA
xfsprogs-3.1.8-0.7.1
SUSE Linux Enterprise Server 11 SP4
xfsprogs-3.1.8-0.7.1
SUSE Linux Enterprise Server for SAP Applications 11 SP3
xfsprogs-3.1.8-0.7.1
SUSE Linux Enterprise Server for SAP Applications 11 SP4
xfsprogs-3.1.8-0.7.1
SUSE Linux Enterprise Software Development Kit 11 SP3
xfsprogs-devel-3.1.8-0.7.1
SUSE Linux Enterprise Software Development Kit 11 SP4
xfsprogs-devel-3.1.8-0.7.1

Ссылки

Описание

xfs_metadump in xfsprogs before 3.2.4 does not properly obfuscate file data, which allows remote attackers to obtain sensitive information by reading a generated image.

Затронутые продукты
SUSE Linux Enterprise Desktop 11 SP3:xfsprogs-3.1.8-0.7.1
SUSE Linux Enterprise Desktop 11 SP4:xfsprogs-3.1.8-0.7.1
SUSE Linux Enterprise Server 11 SP3-TERADATA:xfsprogs-3.1.8-0.7.1
SUSE Linux Enterprise Server 11 SP3:xfsprogs-3.1.8-0.7.1
Ссылки