e2fsprogs 1.45.5-2ubuntu1.1 source package in Ubuntu
Changelog
e2fsprogs (1.45.5-2ubuntu1.1) focal-security; urgency=medium
* SECURITY UPDATE: Out-of-bounds read/write vulnerability
Issue leads to segmentation fault and possibly arbitrary code
execution via a specially crafted filesystem.
- debian/patches/CVE-2022-1304.patch: checks that all leaf nodes of
file system contain at least one extent.
- CVE-2022-1304
-- Mark Esler <email address hidden> Wed, 01 Jun 2022 19:59:32 -0500
Upload details
- Uploaded by:
- Mark Esler
- Uploaded to:
- Focal
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any all
- Section:
- admin
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Focal | updates | main | admin | |
| Focal | security | main | admin |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| e2fsprogs_1.45.5.orig.tar.gz | 7.6 MiB | 91e72a2f6fee21b89624d8ece5a4b3751a17b28775d32cd048921050b4760ed9 |
| e2fsprogs_1.45.5.orig.tar.gz.asc | 488 bytes | 0f900698a89e3e1996cd86966e5ae0dc6f8d866e2cd8a0f4285c23e7ea696720 |
| e2fsprogs_1.45.5-2ubuntu1.1.debian.tar.xz | 80.4 KiB | c652ef99febcaf54031e49032aa32b814c16c2c2ce5e9cfe46f6a36b4dd16b69 |
| e2fsprogs_1.45.5-2ubuntu1.1.dsc | 3.3 KiB | bb6f5777f3c6b31d0eab732b7788685c68f2721f144945539a0a77d057b585a0 |
Available diffs
Binary packages built by this source
- comerr-dev: common error description library - headers and static libraries
libcom_err is an attempt to present a common error-handling mechanism to
manipulate the most common form of error code in a fashion that does not
have the problems identified with mechanisms commonly in use.
.
This package contains the development environment for the com_err library.
- e2fsck-static: statically-linked version of the ext2/ext3/ext4 filesystem checker
This may be of some help to you if your filesystem gets corrupted enough
to break the shared libraries used by the dynamically linked checker.
.
This binary takes much more space than its dynamic counterpart located
in e2fsprogs, though.
.
You may want to install a statically-linked shell as well, to be able
to run this program if something like your C library gets corrupted.
- e2fsck-static-dbgsym: debug symbols for e2fsck-static
- e2fslibs: transitional package to libext2fs2
This is a transitional package to libext2fs2. It can safely be removed.
- e2fslibs-dev: transitional package to libext2fs-dev
This is a transitional package to libext2fs-dev. It can safely be removed.
- e2fsprogs: ext2/ext3/ext4 file system utilities
The ext2, ext3 and ext4 file systems are successors of the original ext
("extended") file system. They are the main file system types used for
hard disks on Debian and other Linux systems.
.
This package contains programs for creating, checking, and maintaining
ext2/3/4-based file systems. It also includes the "badblocks" program,
which can be used to scan for bad blocks on a disk or other storage device.
- e2fsprogs-dbgsym: debug symbols for e2fsprogs
- e2fsprogs-l10n: ext2/ext3/ext4 file system utilities - translations
The ext2, ext3 and ext4 file systems are successors of the original ext
("extended") file system. They are the main file system types used for
hard disks on Debian and other Linux systems.
.
This package provides translations for messages for programs found in
the 'e2fsprogs' package.
- e2fsprogs-udeb: stripped-down versions of e2fsprogs, for debian-installer
This package is an e2fsprogs package built for a reduced size, so that
it can help to save space in debian-installer.
.
Don't attempt to install this package, it has no support for a couple of
features you surely want. Anyway it should refuse to install.
- fuse2fs: ext2 / ext3 / ext4 file system driver for FUSE
fuse2fs is a FUSE file system client that supports reading and
writing from devices or image files containing ext2, ext3, and ext4
file systems.
- fuse2fs-dbgsym: debug symbols for fuse2fs
- libcom-err2: common error description library
libcomerr is an attempt to present a common error-handling mechanism to
manipulate the most common form of error code in a fashion that does not
have the problems identified with mechanisms commonly in use.
- libcom-err2-dbgsym: debug symbols for libcom-err2
- libcomerr2: transitional package to libcom-err2
This is a transitional package to libcom-err2. It can safely be removed.
- libext2fs-dev: ext2/ext3/ext4 file system libraries - headers and static libraries
The ext2, ext3 and ext4 file systems are successors of the original ext
("extended") file system. They are the main file system types used for
hard disks on Debian and other Linux systems.
.
This package contains the development environment for the ext2fs and e2p
libraries.
- libext2fs2: ext2/ext3/ext4 file system libraries
The ext2, ext3 and ext4 file systems are successors of the original ext
("extended") file system. They are the main file system types used for
hard disks on Debian and other Linux systems.
.
This package provides the ext2fs and e2p libraries, for userspace software
that directly accesses extended file systems. Programs that use libext2fs
include e2fsck, mke2fs, and tune2fs. Programs that use libe2p include
dumpe2fs, chattr, and lsattr.
- libext2fs2-dbgsym: debug symbols for libext2fs2
- libss2: command-line interface parsing library
libss provides a simple command-line interface parser which will
accept input from the user, parse the command into an argv argument
vector, and then dispatch it to a handler function.
.
It was originally inspired by the Multics SubSystem library.
- libss2-dbgsym: debug symbols for libss2
- logsave: save the output of a command in a log file
The logsave program will execute cmd_prog with the specified
argument(s), and save a copy of its output to logfile. If the
containing directory for logfile does not exist, logsave will
accumulate the output in memory until it can be written out. A copy
of the output will also be written to standard output.
- logsave-dbgsym: debug symbols for logsave
- ss-dev: command-line interface parsing library - headers and static libraries
This package includes a tool that parses a command table to generate
a simple command-line interface parser, the include files needed to
compile and use it, and the static libs.
.
It was originally inspired by the Multics SubSystem library.
.
This package contains the development environment for the ss library.
