-
Committer:
Bazaar Package Importer
-
Author(s):
Marc Deslauriers
-
Date:
2011-02-10 13:34:04 UTC
-
mfrom:
(43.1.1 maverick-proposed)
-
Revision ID:
james.westby@ubuntu.com-20110210133404-lgcfn5f7fg2q4prx
Tags: 2.8.4-1ubuntu1.3
* SECURITY UPDATE: arbitrary unprivileged unmount
- debian/patches/005-CVE-2011-0541.dpatch: don't follow symlinks when
unmounting in case of a failed mtab update in util/fusermount.c.
- debian/patches/006-CVE-2011-0542.dpatch: chdir to / before performing
mount/umount in util/fusermount.c.
- debian/patches/007-CVE-2011-0543.dpatch: remove legacy util-linux
support so symlinks don't get followed upon fallback in
lib/mount_util.c, util/fusermount.c. Remove unneeded
--disable-legacy-umount option in configure.in.
- debian/rules: remove dh_autoreconf and obsolete
--disable-legacy-umount configure option.
- debian/control: Remove dh-autoreconf from Build-Depends.
- CVE-2011-0541
- CVE-2011-0542
- CVE-2011-0543
* Removed unused 003-CVE-2009-3297.dpatch patch.