Описание
Security update for util-linux
This update for util-linux fixes a number of bugs and one minor security issue.
The following minor vulnerability was fixed:
- CVE-2016-5011: Infinite loop DoS in libblkid while parsing DOS partition (bsc#988361)
The following bugs were fixed:
- bsc#987176: When mounting a subfolder of a CIFS share, mount -a would show the mount as busy
- bsc#947494: mount -a would fail to recognize btrfs already mounted, address loop re-use in libmount
- bsc#966891: Conflict in meaning of losetup -L. This switch in SLE12 SP1 and SP2 continues to carry the meaning of --logical-blocksize instead of upstream --nooverlap
- bsc#994399: Package would trigger conflicts with sysvinit-tools
- bsc#983164: mount uid= and gid= would reject valid non UID/GID values
- bsc#978993: cfdisk would mangle some text output
- bsc#982331: libmount: ignore redundant slashes
Список пакетов
SUSE Linux Enterprise Desktop 12 SP1
libblkid1-2.25-37.1
libblkid1-32bit-2.25-37.1
libmount1-2.25-37.1
libmount1-32bit-2.25-37.1
libsmartcols1-2.25-37.1
libuuid-devel-2.25-37.1
libuuid1-2.25-37.1
libuuid1-32bit-2.25-37.1
python-libmount-2.25-37.1
util-linux-2.25-37.1
util-linux-lang-2.25-37.1
util-linux-systemd-2.25-37.1
uuidd-2.25-37.1
SUSE Linux Enterprise Server 12 SP1
libblkid1-2.25-37.1
libblkid1-32bit-2.25-37.1
libmount1-2.25-37.1
libmount1-32bit-2.25-37.1
libsmartcols1-2.25-37.1
libuuid1-2.25-37.1
libuuid1-32bit-2.25-37.1
python-libmount-2.25-37.1
util-linux-2.25-37.1
util-linux-lang-2.25-37.1
util-linux-systemd-2.25-37.1
uuidd-2.25-37.1
SUSE Linux Enterprise Server for SAP Applications 12 SP1
libblkid1-2.25-37.1
libblkid1-32bit-2.25-37.1
libmount1-2.25-37.1
libmount1-32bit-2.25-37.1
libsmartcols1-2.25-37.1
libuuid1-2.25-37.1
libuuid1-32bit-2.25-37.1
python-libmount-2.25-37.1
util-linux-2.25-37.1
util-linux-lang-2.25-37.1
util-linux-systemd-2.25-37.1
uuidd-2.25-37.1
SUSE Linux Enterprise Software Development Kit 12 SP1
libblkid-devel-2.25-37.1
libmount-devel-2.25-37.1
libsmartcols-devel-2.25-37.1
libuuid-devel-2.25-37.1
SUSE Linux Enterprise Workstation Extension 12 SP1
libuuid-devel-2.25-37.1
Ссылки
- Link for SUSE-SU-2016:2764-1
- E-Mail link for SUSE-SU-2016:2764-1
- SUSE Security Ratings
- SUSE Bug 947494
- SUSE Bug 966891
- SUSE Bug 978993
- SUSE Bug 982331
- SUSE Bug 983164
- SUSE Bug 987176
- SUSE Bug 988361
- SUSE Bug 994399
- SUSE CVE CVE-2016-5011 page
Описание
The parse_dos_extended function in partitions/dos.c in the libblkid library in util-linux allows physically proximate attackers to cause a denial of service (memory consumption) via a crafted MSDOS partition table with an extended partition boot record at zero offset.
Затронутые продукты
SUSE Linux Enterprise Desktop 12 SP1:libblkid1-2.25-37.1
SUSE Linux Enterprise Desktop 12 SP1:libblkid1-32bit-2.25-37.1
SUSE Linux Enterprise Desktop 12 SP1:libmount1-2.25-37.1
SUSE Linux Enterprise Desktop 12 SP1:libmount1-32bit-2.25-37.1
Ссылки
- CVE-2016-5011
- SUSE Bug 988361