Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2015-1572HistoryFeb 24, 2015 - 3:59 p.m.
CVE-2015-1572
2015-02-2415:59:00
Debian Security Bug Tracker
security-tracker.debian.org
10
4.6 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
0.0004 Low
EPSS
Percentile
9.6%
Heap-based buffer overflow in closefs.c in the libext2fs library in e2fsprogs before 1.42.12 allows local users to execute arbitrary code by causing a crafted block group descriptor to be marked as dirty. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-0247.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | e2fsprogs | < 1.42.12-1.1 | e2fsprogs_1.42.12-1.1_all.deb |
| Debian | 11 | all | e2fsprogs | < 1.42.12-1.1 | e2fsprogs_1.42.12-1.1_all.deb |
| Debian | 10 | all | e2fsprogs | < 1.42.12-1.1 | e2fsprogs_1.42.12-1.1_all.deb |
| Debian | 999 | all | e2fsprogs | < 1.42.12-1.1 | e2fsprogs_1.42.12-1.1_all.deb |
| Debian | 13 | all | e2fsprogs | < 1.42.12-1.1 | e2fsprogs_1.42.12-1.1_all.deb |
Related
nessus
nessus
SUSE SLED15 / SLES15 Security Update : e2fsprogs (SUSE-SU-2018:1987-1)
2019-01-02 00:00:00
SUSE SLED12 / SLES12 Security Update : e2fsprogs (SUSE-SU-2015:1341-1)
2015-08-05 00:00:00
Debian DSA-3166-1 : e2fsprogs - security update
2015-02-24 00:00:00
prion
prion
Heap overflow
2015-02-24 15:59:00
Heap overflow
2015-02-17 15:59:00
fedora
fedora
[SECURITY] Fedora 20 Update: e2fsprogs-1.42.12-3.fc20
2015-03-04 10:34:39
[SECURITY] Fedora 21 Update: e2fsprogs-1.42.12-3.fc21
2015-03-04 10:23:11
[SECURITY] Fedora 20 Update: e2fsprogs-1.42.12-2.fc20
2015-02-21 04:24:39
osv
osv
e2fsprogs - security update
2015-02-22 00:00:00
e2fsprogs - security update
2015-02-28 00:00:00
e2fsprogs - security update
2015-02-16 00:00:00
debian
debian
[SECURITY] [DSA 3166-1] e2fsprogs security update
2015-02-22 05:39:45
[SECURITY] [DSA 3166-1] e2fsprogs security update
2015-02-22 05:39:23
[SECURITY] [DLA 162-1] e2fsprogs security update
2015-02-28 21:30:27
ubuntucve
ubuntucve
CVE-2015-1572
2015-02-16 00:00:00
CVE-2015-0247
2015-02-17 00:00:00
suse
suse
Security update for e2fsprogs (important)
2015-06-23 16:03:02
Security update for e2fsprogs (moderate)
2018-07-28 16:05:25
securityvulns
securityvulns
[USN-2507-1] e2fsprogs vulnerabilities
2015-03-08 00:00:00
libext2fs / e2fsprogs buffer overflow
2015-03-08 00:00:00
[oCERT-2015-002] e2fsprogs input sanitization errors
2015-02-16 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2015-0088)
2022-01-28 00:00:00
Debian: Security Advisory (DLA-162-1)
2023-03-08 00:00:00
Fedora Update for e2fsprogs FEDORA-2015-2511
2015-03-05 00:00:00
cve
cve
CVE-2015-1572
2015-02-24 15:59:00
CVE-2015-0247
2015-02-17 15:59:00
mageia
mageia
Updated e2fsprogs packages fix CVE-2015-1572
2015-02-26 11:26:53
Updated e2fsprogs packages fix CVE-2015-0247
2015-02-11 23:47:51
ubuntu
ubuntu
e2fsprogs vulnerabilities
2015-02-23 00:00:00
gentoo
gentoo
e2fsprogs: Arbitrary code execution
2015-07-23 00:00:00
e2fsprogs: Heap-based buffer overflow
2017-01-01 00:00:00
freebsd
freebsd
e2fsprogs -- potential buffer overflow in closefs()
2015-02-06 00:00:00
e2fsprogs -- buffer overflow if s_first_meta_bg too big
2014-08-09 00:00:00
archlinux
archlinux
e2fsprogs: arbitrary code execution
2015-03-12 00:00:00
veracode
veracode
Buffer Overflow
2018-07-30 09:23:14
debiancve
debiancve
CVE-2015-0247
2015-02-17 15:59:00
amazon
amazon
Low: e2fsprogs
2015-06-16 10:26:00
Medium: e2fsprogs
2015-02-11 19:36:00
4.6 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
0.0004 Low
EPSS
Percentile
9.6%
Related for DEBIANCVE:CVE-2015-1572