Описание
Security update for util-linux
This update for util-linux fixes the following issues:
- CVE-2015-5218: Prevent colcrt buffer overflow. (bsc#949754)
These non-security issues were fixed:
- Mount crashes when trying to mount
shmfswhileSELinuxis active. (bsc#1040414) - Fix
lsblk -fonCCISSand other devices with nodes in/devsubdirectory. (bsc#924994) - Fix
script(1)hang caused by mis-interpreted EOF on big-endian platforms. (bsc#930236) - Do not segfault when TERM is not defined or wrong. (bsc#903440)
- Update and fix mount XFS documentation. (bsc#925705)
- Fix recognition of
/dev/dm-Npartitions names. (bsc#931607) - Follow SUSE Linux Enterprise 11 device mapper partition names configuration. (bsc#931607)
- Fix recognition of device mapper partitions. (bsc#923904)
- Fix
fsck -C {fd}parsing. (bsc#923777, bsc#903738)
Список пакетов
SUSE Linux Enterprise Point of Sale 11 SP3
libblkid1-2.19.1-6.62.7.1
libuuid1-2.19.1-6.62.7.1
util-linux-2.19.1-6.62.7.1
util-linux-lang-2.19.1-6.62.7.1
uuid-runtime-2.19.1-6.62.7.1
Ссылки
- Link for SUSE-SU-2021:14693-1
- E-Mail link for SUSE-SU-2021:14693-1
- SUSE Security Ratings
- SUSE Bug 1040414
- SUSE Bug 903440
- SUSE Bug 903738
- SUSE Bug 923777
- SUSE Bug 923904
- SUSE Bug 924994
- SUSE Bug 925705
- SUSE Bug 930236
- SUSE Bug 931607
- SUSE Bug 949754
- SUSE CVE CVE-2015-5218 page
Описание
Buffer overflow in text-utils/colcrt.c in colcrt in util-linux before 2.27 allows local users to cause a denial of service (crash) via a crafted file, related to the page global variable.
Затронутые продукты
SUSE Linux Enterprise Point of Sale 11 SP3:libblkid1-2.19.1-6.62.7.1
SUSE Linux Enterprise Point of Sale 11 SP3:libuuid1-2.19.1-6.62.7.1
SUSE Linux Enterprise Point of Sale 11 SP3:util-linux-2.19.1-6.62.7.1
SUSE Linux Enterprise Point of Sale 11 SP3:util-linux-lang-2.19.1-6.62.7.1
Ссылки
- CVE-2015-5218
- SUSE Bug 949754