Ubuntu
e2fsprogs package

[e2fsprogs] [CVE-2007-5497] several integer overflows in memory allocating code

Bug #174174 reported by disabled.user on 2007-12-05

256

Affects		Status	Importance	Assigned to	Milestone
	e2fsprogs (Ubuntu)	Fix Released	Undecided	Unassigned

Bug Description

Binary package hint: e2fsprogs

References:
[1] CVE-2007-5497 (http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5497)
[2] SUSE-SR:2007:025

Quoting [2]:
"e2fsprogs has been updated to fix several integer overflows in memory allocating code. Programs that use libext2fs are therefore vulnerable to memory corruptions that can lead to arbitrary code execution while loading a specially crafted image."

CVE References

2007-5497

Revision history for this message

disabled.user (disabled.user-deactivatedaccount) wrote on 2007-12-07:

Debian Security Advisory DSA-1422 (http://www.debian.org/security/2007/dsa-1422)

"Rafal Wojtczuk of McAfee AVERT Research discovered that e2fsprogs, ext2 file system utilities and libraries, contained multiple integer overflows in memory allocations, based on sizes taken directly from filesystem information. These could result in heap-based overflows potentially allowing the execution of arbitrary code.

For the stable distribution (etch), this problem has been fixed in version 1.39+1.40-WIP-2006.11.14+dfsg-2etch1."

Revision history for this message

Theodore Ts'o (tytso) wrote on 2007-12-07:

Patch to address CVE-2007-5497 Edit (11.7 KiB, text/plain)

Note that pre-built .debs for Ubuntu Gutsy (for e2fsprogs 1.40.3, which fixes a number of additional bugs over 1.40.2) can be found at http://userweb.kernel.org/~tytso/e2-pre-release/ubuntu