UbuntuUpdates.org

Package "gparted"

Name: gparted

Description:

GNOME partition editor

Latest version: 0.11.0-2ubuntu0.1
Release: precise (12.04)
Level: security
Repository: main
Homepage: http://gparted.sourceforge.net

Links


Download "gparted"


Other versions of "gparted" in Precise

Repository Area Version
base main 0.11.0-2
updates main 0.11.0-2ubuntu0.1
PPA: GetDeb Apps 0.18.0-1~getdeb1

Changelog

Version: 0.11.0-2ubuntu0.1 2015-01-15 03:07:15 UTC

  gparted (0.11.0-2ubuntu0.1) precise-security; urgency=medium

  * SECURITY UPDATE: arbitrary command execution via crafted fs label
    - debian/patches/CVE-2014-7208-1.patch: stop executing external
      commands via a shell process in src/Utils.cc.
    - debian/patches/CVE-2014-7208-2.patch: resolve dependencies which
      relied on shell execution in src/Utils.cc, src/fat16.cc,
      src/fat32.cc, src/jfs.cc, src/reiserfs.cc, src/xfs.cc.
    - CVE-2014-7208
 -- Marc Deslauriers <email address hidden> Wed, 07 Jan 2015 15:37:02 -0500

CVE-2014-7208 GParted before 0.15.0 allows local users to execute arbitrary commands with root privileges via shell metacharacters in a crafted filesystem label.



About   -   Send Feedback to @ubuntu_updates