UbuntuUpdates.org

Package "e2fsprogs"

Name: e2fsprogs

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • statically-linked version of the ext2/ext3/ext4 filesystem checker
Latest version: 1.42-1ubuntu2.5
Release: precise (12.04)
Level: security
Repository: universe

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Other versions of "e2fsprogs" in Precise

Repository Area Version
base main 1.42-1ubuntu2
base universe 1.42-1ubuntu2
security main 1.42-1ubuntu2.5
updates universe 1.42-1ubuntu2.5
updates main 1.42-1ubuntu2.5

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 1.42-1ubuntu2.5 2021-05-03 14:07:24 UTC

  e2fsprogs (1.42-1ubuntu2.5) precise-security; urgency=medium

  * SECURITY UPDATE: Out-of-bounds write
    - debian/patches/CVE-2019-5188-*.patch: abort if there is a corrupted
      directory block when rehashing and don't try to rehash a deleted directory
      in e2fsck/rehash.c, e2fsck/pass1b.c.
    - CVE-2019-5188

 -- <email address hidden> (Leonidas S. Barbosa) Tue, 21 Jan 2020 15:52:55 -0300
Source diff to previous version
CVE-2019-5188 A code execution vulnerability exists in the directory rehashing functionality of E2fsprogs e2fsck 1.45.4. A specially crafted ext4 directory can cau

Version: 1.42-1ubuntu2.2 2015-02-23 19:07:14 UTC

  e2fsprogs (1.42-1ubuntu2.2) precise-security; urgency=medium

  * SECURITY UPDATE: heap overflow via block group descriptor information
    - debian/patches/CVE-2015-0247.patch: limit first_meta_bg in
      lib/ext2fs/closefs.c, lib/ext2fs/openfs.c.
    - CVE-2015-0247
  * SECURITY UPDATE: buffer overflow in closefs()
    - debian/patches/CVE-2015-1572.patch: properly check against
      fs->desc_blocks in lib/ext2fs/closefs.c.
    - CVE-2015-1572
 -- Marc Deslauriers <email address hidden> Mon, 16 Feb 2015 13:45:56 -0500
CVE-2015-0247 Heap-based buffer overflow in openfs.c in the libext2fs library in e2fsprogs before 1.42.12 allows local users to execute arbitrary code via crafted
CVE-2015-1572 potential buffer overflow in closefs()


About   -   Send Feedback to @ubuntu_updates