-
Committer:
Package Import Robot
-
Author(s):
Marc Deslauriers
-
Date:
2015-02-16 13:48:39 UTC
-
mfrom:
(40.1.1 lucid-proposed)
-
Revision ID:
package-import@ubuntu.com-20150216134839-oa5u3hz7sp0zbboc
Tags: 1.41.11-1ubuntu2.3
* SECURITY UPDATE: heap overflow via block group descriptor information
- limit first_meta_bg in lib/ext2fs/closefs.c, lib/ext2fs/openfs.c.
- https://git.kernel.org/cgit/fs/ext2/e2fsprogs.git/commit/?id=f66e6ce4
- CVE-2015-0247
* SECURITY UPDATE: buffer overflow in closefs()
- properly check against fs->desc_blocks in lib/ext2fs/closefs.c.
- https://git.kernel.org/cgit/fs/ext2/e2fsprogs.git/commit/?id=49d0fe2a
- CVE-2015-1572