UbuntuUpdates.org

Package "libuuid1"

Name: libuuid1

Description:

Universally Unique ID library

Latest version: 2.34-0.1ubuntu9.5
Release: focal (20.04)
Level: updates
Repository: main
Head package: util-linux

Links


Download "libuuid1"


Other versions of "libuuid1" in Focal

Repository Area Version
base main 2.34-0.1ubuntu9
security main 2.34-0.1ubuntu9.5

Changelog

Version: 2.34-0.1ubuntu9.5 2024-03-27 18:07:03 UTC

  util-linux (2.34-0.1ubuntu9.5) focal-security; urgency=medium

  * SECURITY UPDATE: Improper neutralization of escape sequences in wall
    - debian/patches/CVE-2024-28085-pre1.patch: correctly handle wide
      characters in include/carefulputc.h, login-utils/last.c,
      term-utils/write.c, libsmartcols/src/fput.c.
    - debian/patches/CVE-2024-28085-pre2.patch: convert homebrew buffering
      to open_memstream() in term-utils/wall.c.
    - debian/patches/CVE-2024-28085-pre3.patch: use fputs_careful() in
      include/carefulputc.h, login-utils/last.c, term-utils/wall.c,
      term-utils/write.c.
    - debian/patches/CVE-2024-28085.patch: consolidate output on the
      terminal in term-utils/wall.c.
    - CVE-2024-28085

 -- Marc Deslauriers <email address hidden> Fri, 22 Mar 2024 08:37:10 -0400

Source diff to previous version
CVE-2024-28085 escape sequence Injection in wall

Version: 2.34-0.1ubuntu9.4 2023-06-12 14:07:05 UTC

  util-linux (2.34-0.1ubuntu9.4) focal; urgency=medium

  * Fix false atari partition detection (LP: #2015355):
    - Backport upstream patches to fix atari partition detection in libblkid:
      + debian/patches/libblkid-fix-Atari-prober-logic.patch
      + debian/patches/libblkid-make-Atari-more-robust.patch
    - Backport upstream patches to fix atari tests:
      + debian/patches/tests-update-atari-partx-tests.patch
      + debian/patches/tests-update-atari-blkid-tests.patch
      + debian/source/include-binaries: Track changes that are not
        representable in quilt patch.

 -- Nick Rosbrook <email address hidden> Tue, 30 May 2023 11:42:35 -0400

Source diff to previous version
2015355 Please backport patches for false atari partition detection to Ubuntu 20.04

Version: 2.34-0.1ubuntu9.3 2022-02-09 16:06:31 UTC

  util-linux (2.34-0.1ubuntu9.3) focal-security; urgency=medium

  * SECURITY UPDATE: Unauthorized unmount of FUSE filesystems belonging to
    users with similar uid
    - debian/patches/CVE-2021-3995-1.patch: make sure mem2strcpy() buffer
      is zeroized in include/strutils.h.
    - debian/patches/CVE-2021-3995-2.patch: fix UID check for FUSE umount
      in libmount/src/context_umount.c, libmount/src/mountP.h,
      libmount/src/optstr.c.
    - CVE-2021-3995
  * SECURITY UPDATE: Unauthorized unmount in util-linux's libmount
    - debian/patches/CVE-2021-3996-1.patch: remove support for deleted
      mount table entries in libmount/src/tab_parse.c.
    - debian/patches/CVE-2021-3996-2.patch: update mountinfo files
      in tests/*.
    - CVE-2021-3996

 -- Marc Deslauriers <email address hidden> Mon, 07 Feb 2022 08:33:35 -0500

Source diff to previous version

Version: 2.34-0.1ubuntu9.1 2020-09-15 23:06:21 UTC

  util-linux (2.34-0.1ubuntu9.1) focal; urgency=medium

  * d/p/rename_fix_regression_for_symlink_with_non-existing_target.patch
    - rename: fix regression for symlink with non-existing target
      (LP: #1886300)

 -- Seyeong Kim <email address hidden> Tue, 21 Jul 2020 16:49:28 +0900

1886300 rename.ul refuses to rename links that don't resolve (regression)



About   -   Send Feedback to @ubuntu_updates