Fix additional write outside destination directory exploit


4.5 release (includes security fix for CVE-2021-40153)

How to install

sudo dnf upgrade --enablerepo=updates-testing --advisory=FEDORA-2021-9fb6da134f

This update has been submitted for testing by bruno.

a week ago

This update's test gating status has been changed to 'failed'.

a week ago

This update's test gating status has been changed to 'waiting'.

a week ago

This update has obsoleted squashfs-tools-4.5-2.fc33, and has inherited its bugs and notes.

a week ago

This update's test gating status has been changed to 'failed'.

a week ago

This update's test gating status has been changed to 'passed'.

a week ago

This update has been pushed to testing.

a week ago
karma

Please login to add feedback.

Metadata
Type
security
Severity
low
Karma
1
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
14 days
Dates
submitted
a week ago
in testing
a week ago
days to stable
5
BZ#1998621 CVE-2021-40153 squashfs-tools: unvalidated filepaths allow writing outside of destination
0
0
BZ#1998622 CVE-2021-40153 squashfs-tools: unvalidated filepaths allow writing outside of destination [fedora-all]
0
0

Automated Test Results

Test Cases

0 0 Test Case squashfs-tools compression