[SECURITY] [DLA 3387-2] udisks2 regression update

2023-04-1009:42:54

lists.debian.org

4.3 Medium

AI Score

Confidence

High

JSON

Debian LTS Advisory DLA-3387-2 [email protected]
https://www.debian.org/lts/security/ Tobias Frost
April 10, 2023 https://wiki.debian.org/LTS

Package : udisks2
Version : 2.8.1-4+deb10u2
Debian Bug : 1034124

A regression was reported that the fix for CVE-2021-3802 broken mounting
allow-listed mount option/value pairs, for example errors=remount-ro.

For Debian 10 buster, this problem has been fixed in version
2.8.1-4+deb10u2.

We recommend that you upgrade your udisks2 packages.

For the detailed security status of udisks2 please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/udisks2

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
Attachment:
signature.asc
Description: PGP signature

OSVersionArchitecturePackageVersionFilename
Debian10i386udisks2-bcache< 2.8.1-4+deb10u2udisks2-bcache_2.8.1-4+deb10u2_i386.deb
Debian10arm64udisks2-zram< 2.8.1-4+deb10u2udisks2-zram_2.8.1-4+deb10u2_arm64.deb
Debian10armhflibudisks2-0< 2.8.1-4+deb10u2libudisks2-0_2.8.1-4+deb10u2_armhf.deb
Debian10armhflibudisks2-dev< 2.8.1-4+deb10u2libudisks2-dev_2.8.1-4+deb10u2_armhf.deb
Debian10amd64libudisks2-0< 2.8.1-4+deb10u2libudisks2-0_2.8.1-4+deb10u2_amd64.deb
Debian10amd64udisks2-btrfs< 2.8.1-4+deb10u2udisks2-btrfs_2.8.1-4+deb10u2_amd64.deb
Debian10armhfudisks2-lvm2< 2.8.1-4+deb10u2udisks2-lvm2_2.8.1-4+deb10u2_armhf.deb
Debian10arm64udisks2-lvm2< 2.8.1-4+deb10u2udisks2-lvm2_2.8.1-4+deb10u2_arm64.deb
Debian10i386libudisks2-0< 2.8.1-4+deb10u2libudisks2-0_2.8.1-4+deb10u2_i386.deb
Debian10i386udisks2-btrfs< 2.8.1-4+deb10u2udisks2-btrfs_2.8.1-4+deb10u2_i386.deb

OS	Version	Architecture	Package	Version	Filename
Debian	10	i386	udisks2-bcache	< 2.8.1-4+deb10u2	udisks2-bcache_2.8.1-4+deb10u2_i386.deb
Debian	10	arm64	udisks2-zram	< 2.8.1-4+deb10u2	udisks2-zram_2.8.1-4+deb10u2_arm64.deb
Debian	10	armhf	libudisks2-0	< 2.8.1-4+deb10u2	libudisks2-0_2.8.1-4+deb10u2_armhf.deb
Debian	10	armhf	libudisks2-dev	< 2.8.1-4+deb10u2	libudisks2-dev_2.8.1-4+deb10u2_armhf.deb
Debian	10	amd64	libudisks2-0	< 2.8.1-4+deb10u2	libudisks2-0_2.8.1-4+deb10u2_amd64.deb
Debian	10	amd64	udisks2-btrfs	< 2.8.1-4+deb10u2	udisks2-btrfs_2.8.1-4+deb10u2_amd64.deb
Debian	10	armhf	udisks2-lvm2	< 2.8.1-4+deb10u2	udisks2-lvm2_2.8.1-4+deb10u2_armhf.deb
Debian	10	arm64	udisks2-lvm2	< 2.8.1-4+deb10u2	udisks2-lvm2_2.8.1-4+deb10u2_arm64.deb
Debian	10	i386	libudisks2-0	< 2.8.1-4+deb10u2	libudisks2-0_2.8.1-4+deb10u2_i386.deb
Debian	10	i386	udisks2-btrfs	< 2.8.1-4+deb10u2	udisks2-btrfs_2.8.1-4+deb10u2_i386.deb