rpm package
suse/e2fsprogs&distro=SUSE Linux Enterprise Server 12
pkg:rpm/suse/e2fsprogs&distro=SUSE%20Linux%20Enterprise%20Server%2012
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2015-1572 | — | < 1.42.11-7.1 | 1.42.11-7.1 | Feb 24, 2015 | Heap-based buffer overflow in closefs.c in the libext2fs library in e2fsprogs before 1.42.12 allows local users to execute arbitrary code by causing a crafted block group descriptor to be marked as dirty. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-0 | ||
| CVE-2015-0247 | — | < 1.42.11-7.1 | 1.42.11-7.1 | Feb 17, 2015 | Heap-based buffer overflow in openfs.c in the libext2fs library in e2fsprogs before 1.42.12 allows local users to execute arbitrary code via crafted block group descriptor data in a filesystem image. |
- CVE-2015-1572Feb 24, 2015affected < 1.42.11-7.1fixed 1.42.11-7.1
Heap-based buffer overflow in closefs.c in the libext2fs library in e2fsprogs before 1.42.12 allows local users to execute arbitrary code by causing a crafted block group descriptor to be marked as dirty. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-0
- CVE-2015-0247Feb 17, 2015affected < 1.42.11-7.1fixed 1.42.11-7.1
Heap-based buffer overflow in openfs.c in the libext2fs library in e2fsprogs before 1.42.12 allows local users to execute arbitrary code via crafted block group descriptor data in a filesystem image.