SUSE-SU-2018:1987-1
- Source
- https://www.suse.com/support/update/announcement/2018/suse-su-20181987-1/
- Import Source
- https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2018:1987-1.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/SUSE-SU-2018:1987-1
- Related
- Published
- 2018-07-19T07:50:35Z
- Modified
- 2025-05-08T17:00:58.859389Z
- Upstream
- Summary
- Security update for e2fsprogs
- Details
-
This update for e2fsprogs fixes the following issues:
Security issues fixed:
- CVE-2015-0247: Fixed couple of heap overflows in e2fsprogs (fsck, dumpe2fs, e2image...) (bsc#915402).
- CVE-2015-1572: Fixed potential buffer overflow in closefs() (bsc#918346).
Bug fixes:
- bsc#1038194: generic/405 test fails with /dev/mapper/thin-vol is inconsistent on ext4 file system.
- bsc#1009532: resize2fs hangs when trying to resize a large ext4 file system.
- bsc#960273: xfsprogs does not call %{?regenerateinitrdpost}.
- References
-
- https://www.suse.com/support/update/announcement/2018/suse-su-20181987-1/
- https://bugzilla.suse.com/1009532
- https://bugzilla.suse.com/1038194
- https://bugzilla.suse.com/915402
- https://bugzilla.suse.com/918346
- https://bugzilla.suse.com/960273
- https://www.suse.com/security/cve/CVE-2015-0247
- https://www.suse.com/security/cve/CVE-2015-1572
Affected packages
SUSE:Linux Enterprise Module for Basesystem 15 / e2fsprogs
Package
- Name
- e2fsprogs
- Purl
- pkg:rpm/suse/e2fsprogs&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.43.8-4.3.1
Ecosystem specific
{
"binaries": [
{
"libcom_err-devel-static": "1.43.8-4.3.1",
"libcom_err-devel": "1.43.8-4.3.1",
"e2fsprogs-devel": "1.43.8-4.3.1",
"libcom_err2-32bit": "1.43.8-4.3.1",
"libcom_err2": "1.43.8-4.3.1",
"e2fsprogs": "1.43.8-4.3.1",
"libext2fs-devel-static": "1.43.8-4.3.1",
"libext2fs-devel": "1.43.8-4.3.1",
"libext2fs2": "1.43.8-4.3.1"
}
]
}