stable
FEDORA-EPEL-2022-69c4ed93d1 created by spot a month ago for Fedora EPEL 7

Update to 2022.5.17. Fixes: CVE-2021-46790, CVE-2022-30783, CVE-2022-30784, CVE-2022-30785, CVE-2022-30786, CVE-2022-30787, CVE-2022-30788, CVE-2022-30789

This update has been submitted for testing by spot.

a month ago

This update's test gating status has been changed to 'ignored'.

a month ago

This update has been pushed to testing.

a month ago
User Icon nevun commented & provided feedback a month ago
karma

Works here.

[root@station ~]# yum info ntfs-3g
Installed Packages
Name        : ntfs-3g
Arch        : x86_64
Epoch       : 2
Version     : 2022.5.17
Release     : 1.el7
Size        : 295 k
Repo        : installed
From repo   : epel-testing
[ ... ]
aug 10 11:05:46 station ntfs-3g[17851]: Version 2022.5.17 integrated FUSE 28
aug 10 11:05:46 station ntfs-3g[17851]: Mounted /dev/sdb1 (Read-Write, label "FOO", NTFS 3.1)
aug 10 11:05:46 station ntfs-3g[17851]: Cmdline options: rw,nosuid,nodev,noexec,uid=0,gid=0,umask=077,nls=utf8,context="system_u:object_r:removable_t:s0",user
aug 10 11:05:46 station ntfs-3g[17851]: Mount options: nosuid,nodev,noexec,nls=utf8,context="system_u:object_r:removable_t:s0",user,allow_other,nonempty,relatime,rw,default_permissions,fsname=/dev/sdb1,blkdev,blksize=4096
aug 10 11:05:46 station ntfs-3g[17851]: Global ownership and permissions enforced, configuration type 7
aug 10 11:06:04 station ntfs-3g[17851]: Unmounting /dev/sdb1 (FOO)
aug 10 11:06:04 station ntfs-3g[17787]: Unmounting /dev/sda ()

This update has been submitted for stable by bodhi.

a month ago

This update has been pushed to stable.

a month ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
1
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
7 days
Dates
submitted
a month ago
in testing
a month ago
in stable
a month ago
BZ#2093307 CVE-2022-30783 ntfs-3g: invalid return code in fuse_kern_mount enables intercepting of libfuse-lite protocol traffic [epel-all]
0
0
BZ#2093317 CVE-2022-30784 ntfs-3g: crafted NTFS image can cause heap exhaustion in ntfs_get_attribute_value [epel-all]
0
0
BZ#2093322 CVE-2022-30785 ntfs-3g: a file handle created in fuse_lib_opendir, and later used in fuse_lib_readdir, enables arbitrary memory read and write operations [epel-all]
0
0
BZ#2093330 CVE-2022-30786 ntfs-3g: crafted NTFS image can cause a heap-based buffer overflow in ntfs_names_full_collate [epel-all]
0
0
BZ#2093335 CVE-2022-30787 ntfs-3g: integer underflow in fuse_lib_readdir enables arbitrary memory read operations [epel-all]
0
0
BZ#2093342 CVE-2022-30788 ntfs-3g: crafted NTFS image can cause a heap-based buffer overflow in ntfs_mft_rec_alloc [epel-all]
0
0
BZ#2093350 CVE-2022-30789 ntfs-3g: crafted NTFS image can cause a heap-based buffer overflow in ntfs_check_log_client_array [epel-all]
0
0
BZ#2093362 CVE-2021-46790 ntfs-3g: heap-based buffer overflow in ntfsck [epel-all]
0
0

Automated Test Results