ntfs-3g 1:2017.3.23-2ubuntu0.18.04.4 source package in Ubuntu
Changelog
ntfs-3g (1:2017.3.23-2ubuntu0.18.04.4) bionic-security; urgency=medium
* SECURITY UPDATE: heap buffer overflow in ntfsck
- debian/patches/CVE-2021-46790.patch: properly handle error in
ntfsprogs/ntfsck.c.
- CVE-2021-46790
* SECURITY UPDATE: traffic interception via incorrect return code
- debian/patches/CVE-2022-30783.patch: return proper error code in
libfuse-lite/mount.c, src/ntfs-3g_common.c, src/ntfs-3g_common.h.
- CVE-2022-30783
* SECURITY UPDATE: heap exhaustion via invalid NTFS image
- debian/patches/CVE-2022-30784.patch: Avoid allocating and reading an
attribute beyond its full size in libntfs-3g/attrib.c.
- CVE-2022-30784
* SECURITY UPDATE: arbitrary memory access via fuse
- debian/patches/CVE-2022-30785_30787.patch: check directory offset in
libfuse-lite/fuse.c.
- CVE-2022-30785
- CVE-2022-30787
* SECURITY UPDATE: heap overflow via ntfs attribute names
- debian/patches/CVE-2022-30786-1.patch: make sure there is no null
character in an attribute name in libntfs-3g/attrib.c.
- debian/patches/CVE-2022-30786-2.patch: make sure there is no null
character in an attribute name in libntfs-3g/attrib.c.
- CVE-2022-30786
* SECURITY UPDATE: heap buffer overflow via crafted NTFS image
- debian/patches/CVE-2022-30788-1.patch: use a default usn when the
former one cannot be retrieved in libntfs-3g/mft.c.
- debian/patches/CVE-2022-30788-2.patch: fix operation on little endian
data in libntfs-3g/mft.c.
- CVE-2022-30788
* SECURITY UPDATE: heap buffer overflow via crafted NTFS image
- debian/patches/CVE-2022-30789.patch: make sure the client log data
does not overflow from restart page in libntfs-3g/logfile.c.
- CVE-2022-30789
-- Marc Deslauriers <email address hidden> Mon, 06 Jun 2022 14:11:22 -0400
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Bionic
- Original maintainer:
- Ubuntu Developers
- Architectures:
- linux-any kfreebsd-any
- Section:
- otherosfs
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| ntfs-3g_2017.3.23.orig.tar.gz | 1.2 MiB | 3e5a021d7b761261836dcb305370af299793eedbded731df3d6943802e1262d5 |
| ntfs-3g_2017.3.23-2ubuntu0.18.04.4.debian.tar.xz | 37.8 KiB | c5355a127f634951072986190b251f35eb8eafc74d53fde2eff61df431aaabc0 |
| ntfs-3g_2017.3.23-2ubuntu0.18.04.4.dsc | 2.3 KiB | 502c1f51bfec2726d61228d46a89d2df656200d568f555cc20877ef75504593b |
Available diffs
Binary packages built by this source
- libntfs-3g88: read/write NTFS driver for FUSE (runtime library)
NTFS-3G uses FUSE (Filesystem in Userspace) to provide support for the NTFS
filesystem used by Microsoft Windows.
.
This package contains the actual library.
- ntfs-3g: read/write NTFS driver for FUSE
NTFS-3G uses FUSE (Filesystem in Userspace) to provide support for the NTFS
filesystem used by Microsoft Windows.
- ntfs-3g-dbg: read/write NTFS driver for FUSE (debug)
NTFS-3G uses FUSE (Filesystem in Userspace) to provide support for the NTFS
filesystem used by Microsoft Windows.
.
This package contains the debugging symbols.
- ntfs-3g-dev: read/write NTFS driver for FUSE (development)
NTFS-3G uses FUSE (Filesystem in Userspace) to provide support for the NTFS
filesystem used by Microsoft Windows.
.
This package contains the development files.
- ntfs-3g-udeb: read/write NTFS driver for FUSE
