UbuntuUpdates.org

Package "ntfs-3g-dev"

Name: ntfs-3g-dev

Description:

read/write NTFS driver for FUSE (development)

Latest version: 1:2015.3.14AR.1-1ubuntu0.3
Release: xenial (16.04)
Level: updates
Repository: main
Head package: ntfs-3g
Homepage: http://www.tuxera.com/community/ntfs-3g-advanced/

Links


Download "ntfs-3g-dev"


Other versions of "ntfs-3g-dev" in Xenial

Repository Area Version
base main 1:2015.3.14AR.1-1build1
security main 1:2015.3.14AR.1-1ubuntu0.3

Changelog

Version: 1:2015.3.14AR.1-1ubuntu0.3 2019-04-17 17:06:33 UTC

  ntfs-3g (1:2015.3.14AR.1-1ubuntu0.3) xenial-security; urgency=medium

  * Fix LP: #1821250 - Don't install /bin/ntfs-3g as setuid root. If
    administrators want to allow unprivileged users to be able to mount NTFS
    images, they can restore this functionality by changing the permissions of
    /bin/ntfs-3g with dpkg-statoverride
    - update debian/ntfs-3g.postinst

 -- Chris Coulson <email address hidden> Thu, 21 Mar 2019 21:33:36 +0000

Source diff to previous version
1821250 Drop setuid bit from /bin/ntfs-3g

Version: 1:2015.3.14AR.1-1ubuntu0.2 2019-03-21 19:06:48 UTC

  ntfs-3g (1:2015.3.14AR.1-1ubuntu0.2) xenial-security; urgency=medium

  * SECURITY UPDATE: Heap buffer overflow in /bin/ntfs-3g
    - debian/patches/0001-Fixed-reporting-an-error-when-failed-to-build-the-mo.patch:
      Fixed reporting an error when failed to build the mountpoint
    - CVE-2019-9755

 -- Chris Coulson <email address hidden> Thu, 14 Mar 2019 15:36:07 +0000

Source diff to previous version
CVE-2019-9755 RESERVED

Version: 1:2015.3.14AR.1-1ubuntu0.1 2017-02-01 17:06:41 UTC

  ntfs-3g (1:2015.3.14AR.1-1ubuntu0.1) xenial-security; urgency=medium

  * SECURITY UPDATE: Improper environment scrubbing prior to executing
    modprobe could allow a local attacker to load arbitrary kernel modules
    - debian/patches/0002-CVE-2017-0358.patch: Execute modprobe with an empty
      environment. Based on patch from upstream.
    - CVE-2017-0358

 -- Tyler Hicks <email address hidden> Fri, 27 Jan 2017 23:34:41 +0000

CVE-2017-0358 RESERVED



About   -   Send Feedback to @ubuntu_updates