e2fsprogs: Arbitrary Code Execution

Background e2fsprogs is a set of utilities for maintaining the ext2, ext3 and ext4 file systems. Description Multiple vulnerabilities have been discovered in e2fsprogs. Please review the CVE identifiers referenced below for details. Impact An out-of-bounds read/write vulnerability was found in...

CVE-2020-6546

Inappropriate implementation in installer in Google Chrome prior to 84.0.4147.125 allowed a local attacker to potentially elevate privilege via a crafted filesystem...

CVE-2020-6546

CVE-2020-6546 affects Google Chrome on Windows/macOS/Linux via an Inappropriate implementation in the installer. The root cause is an flawed installer flow that can be abused by a local attacker to escalate privileges through a crafted filesystem, as detailed in multiple advisories. The impact is...

CVE-2020-6546

Inappropriate implementation in installer in Google Chrome prior to 84.0.4147.125 allowed a local attacker to potentially elevate privilege via a crafted filesystem...

Heap overflow

The readboot function in boot.c in dosfstools before 4.0 allows attackers to cause a denial of service crash via a crafted filesystem, which triggers a heap-based buffer overflow in the 1 readfat function or an out-of-bounds heap read in 2 getfat function...