~ubuntu-branches/ubuntu/lucid/fuse/lucid-updates

Viewing all changes in revision 45.

  • Committer: Bazaar Package Importer
  • Author(s): Marc Deslauriers
  • Date: 2011-02-11 13:41:20 UTC
  • mfrom: (41.1.2 lucid-security)
  • Revision ID: james.westby@ubuntu.com-20110211134120-jm4d3xvvp5l20iu2
Tags: 2.8.1-1.1ubuntu3.1
* SECURITY UPDATE: arbitrary unprivileged unmount
  - debian/patches/CVE-2011-0541.dpatch: don't follow symlinks when
    unmounting in case of a failed mtab update in util/fusermount.c.
  - debian/patches/CVE-2011-0542.dpatch: chdir to / before performing
    mount/umount in util/fusermount.c.
  - debian/patches/CVE-2011-0543.dpatch: remove legacy util-linux
    support so symlinks don't get followed upon fallback in
    lib/mount_util.c, util/fusermount.c.
  - CVE-2011-0541
  - CVE-2011-0542
  - CVE-2011-0543

expand all expand all

Show diffs side-by-side

added added

removed removed

Lines of Context: