Moderate: squashfs-tools security update

🗓️ 22 May 2024 00:00:00Reported by AlmaLinuxType

almalinux

almalinux🔗 errata.almalinux.org👁 26 Views

Moderate security update for squashfs-tool

Reporter	Title	Published	Views	Family All 203
ATTACKERKB	CVE-2021-41072	14 Sep 202101:15	–	attackerkb
ATTACKERKB	CVE-2021-40153	27 Aug 202115:15	–	attackerkb
Tenable Nessus	Amazon Linux 2 : squashfs-tools (ALAS-2023-2152)	20 Jul 202300:00	–	nessus
Tenable Nessus	Alibaba Cloud Linux 3 : 0129: squashfs-tools (ALINUX3-SA-2024:0129)	14 May 202500:00	–	nessus
Tenable Nessus	CentOS 8 : squashfs-tools (CESA-2024:3139)	22 May 202400:00	–	nessus
Tenable Nessus	CentOS 9 : squashfs-tools-4.4-10.git1.el9	29 Feb 202400:00	–	nessus
Tenable Nessus	Debian DLA-2752-1 : squashfs-tools - LTS security update	3 Sep 202100:00	–	nessus
Tenable Nessus	Debian DLA-2789-1 : squashfs-tools - LTS security update	21 Oct 202100:00	–	nessus
Tenable Nessus	Debian DSA-4967-1 : squashfs-tools - security update	4 Sep 202100:00	–	nessus
Tenable Nessus	Debian DSA-4987-1 : squashfs-tools - security update	16 Oct 202100:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
almalinux	8	x86_64	squashfs-tools	4.3-21.el8	squashfs-tools-4.3-21.el8.x86_64.rpm
almalinux	8	aarch64	squashfs-tools	4.3-21.el8	squashfs-tools-4.3-21.el8.aarch64.rpm
almalinux	8	ppc64le	squashfs-tools	4.3-21.el8	squashfs-tools-4.3-21.el8.ppc64le.rpm
almalinux	8	s390x	squashfs-tools	4.3-21.el8	squashfs-tools-4.3-21.el8.s390x.rpm

Source	Link
access	www.access.redhat.com/errata/RHSA-2024:3139
access	www.access.redhat.com/security/cve/CVE-2021-40153
access	www.access.redhat.com/security/cve/CVE-2021-41072
bugzilla	www.bugzilla.redhat.com/1998621
bugzilla	www.bugzilla.redhat.com/2004957
errata	www.errata.almalinux.org/8/ALSA-2024-3139.html

29 May 2024 14:39Current

6.8Medium risk

Vulners AI Score6.8

CVSS 25.8

CVSS 3.18.1

EPSS0.025

squashfs linux security fix directory traversal cve-2021-40153 cve-2021-41072 almalinux