-
Committer:
Bazaar Package Importer
-
Author(s):
Marc Deslauriers
-
Date:
2011-02-11 13:41:20 UTC
-
mfrom:
(41.1.2 lucid-security)
-
Revision ID:
james.westby@ubuntu.com-20110211134120-jm4d3xvvp5l20iu2
Tags: 2.8.1-1.1ubuntu3.1
* SECURITY UPDATE: arbitrary unprivileged unmount
- debian/patches/CVE-2011-0541.dpatch: don't follow symlinks when
unmounting in case of a failed mtab update in util/fusermount.c.
- debian/patches/CVE-2011-0542.dpatch: chdir to / before performing
mount/umount in util/fusermount.c.
- debian/patches/CVE-2011-0543.dpatch: remove legacy util-linux
support so symlinks don't get followed upon fallback in
lib/mount_util.c, util/fusermount.c.
- CVE-2011-0541
- CVE-2011-0542
- CVE-2011-0543