NewStart CGSL MAIN 6.06 : e2fsprogs Multiple Vulnerabilities (NS-SA-2025-0221)

The remote NewStart CGSL host, running version MAIN 6.06, has e2fsprogs packages installed that are affected by multiple vulnerabilities: - Heap-based buffer overflow in closefs.c in the libext2fs library in e2fsprogs before 1.42.12 allows local users to execute arbitrary code by causing a crafte...

Oracle Linux 7 : e2fsprogs (ELSA-2024-12730)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-12730 advisory. - libext2fs: add sanity check to extent manipulation Srivathsa Dara Orabug: 37095032 CVE-2022-1304 - Fix potential buffer overflow in closefs 1193947,...

SUSE SLED11 / SLES11 Security Update : e2fsprogs (SUSE-SU-2015:1103-1)

This update provides the following security-fixes for e2fsprogs : libext2fs: fix potential buffer overflow in closefs bsc918346, CVE-2015-1572 libext2fs: avoid buffer overflow if sfirstmetabg is too big bsc915402, CVE-2015-0247 Note that Tenable Network Security has extracted the preceding...

Fedora 21 : e2fsprogs-1.42.12-3.fc21 (2015-2511)

Fix potential buffer overflow in closefs 1193947, CVE-2015-1572 - Fix dumpe2fs segfault with no arguments 1194063 - Don't require fsck prior to resize2fs -P 1170803 Changes e2fsck.conf so that for filesystems with time-based check intervals set in the superblock, these time-based checks will work...

Fedora 20 : e2fsprogs-1.42.12-3.fc20 (2015-2516)

Fix potential buffer overflow in closefs 1193947, CVE-2015-1572 - Fix dumpe2fs segfault with no arguments 1194063 - Don't require fsck prior to resize2fs -P 1170803 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable...

e2fsprogs -- potential buffer overflow in closefs()

Theodore Ts'o reports: On a carefully crafted filesystem that gets modified through tune2fs or debugfs, it is possible to trigger a buffer overrun when the file system is closed via closefs...