226 matches found
SUSE-SU-2017:0471-1 Security update for the Linux Kernel
The SUSE Linux Enterprise 12 GA LTSS kernel was updated to 3.12.61 to receive various security and bugfixes. The following feature was implemented: - The ext2 filesystem got reenabled and supported to allow support for 'XIP' Execute In Place FATE320805. The following security bugs were fixed: -...
USB Key Cleaner: CIRCLean
USB Key Cleaner Malware regularly uses USB sticks to infect victims, and the abuse of USB sticks is a common vector of infection. CIRCLean is an independent hardware solution to clean documents from untrusted obtained USB keys / USB sticks. The device automatically converts untrusted documents in...
e2fsprogs: Heap-based buffer overflow
Background e2fsprogs is a set of utilities for maintaining the ext2, ext3 and ext4 file systems. Description A heap-based buffer overflow was discovered in openfs.c in the libext2fs library in e2fsprogs. Impact A remote attacker could entice a user to use ext2fs library for example, fsck on a...
DEBIAN-CVE-2015-8952
The mbcache feature in the ext2 and ext4 filesystem implementations in the Linux kernel before 4.6 mishandles xattr block caching, which allows local users to cause a denial of service soft lockup via filesystem operations in environments that use many attributes, as demonstrated by Ceph and Samb...
Design/Logic Flaw
The mbcache feature in the ext2 and ext4 filesystem implementations in the Linux kernel before 4.6 mishandles xattr block caching, which allows local users to cause a denial of service soft lockup via filesystem operations in environments that use many attributes, as demonstrated by Ceph and Samb...
CVE-2015-8952
CVE-2015-8952 : The mbcache feature in the Linux kernel’s ext2/ext4 implementations mishandles xattr block caching, enabling a local attacker to cause a denial of service (soft lockup) in environments with many attributes (as demonstrated by Ceph and Samba). The vulnerability is present in kernel...
CVE-2015-8952
The mbcache feature in the ext2 and ext4 filesystem implementations in the Linux kernel before 4.6 mishandles xattr block caching, which allows local users to cause a denial of service soft lockup via filesystem operations in environments that use many attributes, as demonstrated by Ceph and Samb...
CVE-2015-8952
The mbcache feature in the ext2 and ext4 filesystem implementations in the Linux kernel before 4.6 mishandles xattr block caching, which allows local users to cause a denial of service soft lockup via filesystem operations in environments that use many attributes, as demonstrated by Ceph and Samb...
Amazon Linux: Security Advisory (ALAS-2015-542)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
TestDisk - Partition Recovery and File Undelete for Windows, Linux and Mac
TestDisk is powerful free data recovery software! It was primarily designed to help recover lost partitions and/or make non-booting disks bootable again when these symptoms are caused by faulty software : certain types of viruses or human error such as accidentally deleting a Partition Table...
Amazon Linux AMI : e2fsprogs (ALAS-2015-542)
A heap-based buffer overflow flaw was found in e2fsprogs. A specially crafted Ext2/3/4 file system could cause an application using the ext2fs library for example, fsck to crash or, possibly, execute arbitrary code. C Tenable Network Security, Inc. The descriptive text and package checks in this...
Low: e2fsprogs
Issue Overview: A heap-based buffer overflow flaw was found in e2fsprogs. A specially crafted Ext2/3/4 file system could cause an application using the ext2fs library for example, fsck to crash or, possibly, execute arbitrary code. Affected Packages: e2fsprogs Issue Correction: Run yum update...
[SECURITY] Fedora 20 Update: e2fsprogs-1.42.12-3.fc20
The e2fsprogs package contains a number of utilities for creating, checking, modifying, and correcting any inconsistencies in second, third and fourth extended ext2/ext3/ext4 filesystems. E2fsprogs contains e2fsck used to repair filesystem inconsistencies after an unclean shutdown, mke2fs used to...
[SECURITY] Fedora 21 Update: e2fsprogs-1.42.12-3.fc21
The e2fsprogs package contains a number of utilities for creating, checking, modifying, and correcting any inconsistencies in second, third and fourth extended ext2/ext3/ext4 filesystems. E2fsprogs contains e2fsck used to repair filesystem inconsistencies after an unclean shutdown, mke2fs used to...
DLA-162-1 e2fsprogs - security update
Bulletin has no description...
Debian DSA-3166-1 : e2fsprogs - security update
Jose Duart of the Google Security Team discovered a buffer overflow in e2fsprogs, a set of utilities for the ext2, ext3, and ext4 file systems. This issue can possibly lead to arbitrary code execution if a malicious device is plugged in, the system is configured to automatically mount it, and the...
USN-2507-1: e2fsprogs vulnerabilities
Jose Duart discovered that e2fsprogs incorrectly handled invalid block group descriptor data. A local attacker could use this issue with a crafted filesystem image to possibly execute arbitrary code. CVE-2015-0247, CVE-2015-1572...
[SECURITY] [DSA 3166-1] e2fsprogs security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3166-1 [email protected] http://www.debian.org/security/ Michael Gilbert February 22, 2015 http://www.debian.org/security/faq -...
[SECURITY] [DSA 3166-1] e2fsprogs security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3166-1 [email protected] http://www.debian.org/security/ Michael Gilbert February 22, 2015 http://www.debian.org/security/faq -...
Debian Security Advisory DSA 3166-1 (e2fsprogs - security update)
Jose Duart of the Google Security Team discovered a buffer overflow in e2fsprogs, a set of utilities for the ext2, ext3, and ext4 file systems. This issue can possibly lead to arbitrary code execution if a malicious device is plugged in, the system is configured to automatically mount it, and the...