[ubuntu/lucid-security] fuse, fuse (delayed) 2.8.1-1.1ubuntu3.1 (Accepted)

Ubuntu Installer archive at ubuntu.com
Mon Feb 28 18:05:12 UTC 2011 

fuse (2.8.1-1.1ubuntu3.1) lucid-security; urgency=low

  * SECURITY UPDATE: arbitrary unprivileged unmount
    - debian/patches/CVE-2011-0541.dpatch: don't follow symlinks when
      unmounting in case of a failed mtab update in util/fusermount.c.
    - debian/patches/CVE-2011-0542.dpatch: chdir to / before performing
      mount/umount in util/fusermount.c.
    - debian/patches/CVE-2011-0543.dpatch: remove legacy util-linux
      support so symlinks don't get followed upon fallback in
      lib/mount_util.c, util/fusermount.c.
    - CVE-2011-0541
    - CVE-2011-0542
    - CVE-2011-0543

Date: Fri, 11 Feb 2011 13:41:20 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/fuse/2.8.1-1.1ubuntu3.1
-------------- next part --------------
Format: 1.8
Date: Fri, 11 Feb 2011 13:41:20 -0500
Source: fuse
Binary: fuse-utils libfuse-dev libfuse2 fuse-utils-udeb libfuse2-udeb
Architecture: source
Version: 2.8.1-1.1ubuntu3.1
Distribution: lucid-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 fuse-utils - Filesystem in USErspace (utilities)
 fuse-utils-udeb - Filesystem in USErspace (utilities) (udeb)
 libfuse-dev - Filesystem in USErspace (development files)
 libfuse2   - Filesystem in USErspace library
 libfuse2-udeb - Filesystem in USErspace library (udeb)
Changes: 
 fuse (2.8.1-1.1ubuntu3.1) lucid-security; urgency=low
 .
   * SECURITY UPDATE: arbitrary unprivileged unmount
     - debian/patches/CVE-2011-0541.dpatch: don't follow symlinks when
       unmounting in case of a failed mtab update in util/fusermount.c.
     - debian/patches/CVE-2011-0542.dpatch: chdir to / before performing
       mount/umount in util/fusermount.c.
     - debian/patches/CVE-2011-0543.dpatch: remove legacy util-linux
       support so symlinks don't get followed upon fallback in
       lib/mount_util.c, util/fusermount.c.
     - CVE-2011-0541
     - CVE-2011-0542
     - CVE-2011-0543
Checksums-Sha1: 
 e367a2e0bc6aa6af666cd6999621ead3977b170a 1996 fuse_2.8.1-1.1ubuntu3.1.dsc
 c1709b9ff7eb87167e4d734d4470a9f428098de0 27383 fuse_2.8.1-1.1ubuntu3.1.diff.gz
Checksums-Sha256: 
 766185e986ddc72f837a12bdebdb3ea908874c731d51e4d7d288b58c2aa1919f 1996 fuse_2.8.1-1.1ubuntu3.1.dsc
 386a09daf7c3f62da66e6335fc965129964ef6a3caa8d51f93084b5a0e38ec52 27383 fuse_2.8.1-1.1ubuntu3.1.diff.gz
Files: 
 011e99d872ef8aa01bfd5aa53e2f348c 1996 libs optional fuse_2.8.1-1.1ubuntu3.1.dsc
 0d3a2d5c7858db66234aec282f7176d0 27383 libs optional fuse_2.8.1-1.1ubuntu3.1.diff.gz
Original-Maintainer: Bartosz Fenski <fenio at debian.org>

More information about the Lucid-changes mailing list