Summary: | <sys-fs/erofs-utils-1.6-r1: multiple vulnerabilities | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | John Helmert III <ajak> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | IN_PROGRESS --- | ||
Severity: | trivial | CC: | xen0n |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | ~1 [noglsa cleanup] | ||
Package list: | Runtime testing required: | --- |
Description
John Helmert III
![]() ![]() ![]() ![]() Proposed patches: https://git.kernel.org/pub/scm/linux/kernel/git/xiang/erofs-utils.git/patch/?id=27aeef179bf17d5f1d98f827e93d24839a6d4176 https://git.kernel.org/pub/scm/linux/kernel/git/xiang/erofs-utils.git/patch/?id=2145dff03dd3f3f74bcda3b52160fbad37f7fcfe The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=65fec4463485c48cd2a2a2803b9adbd3afb43e10 commit 65fec4463485c48cd2a2a2803b9adbd3afb43e10 Author: WANG Xuerui <xen0n@gentoo.org> AuthorDate: 2023-07-15 17:50:16 +0000 Commit: WANG Xuerui <xen0n@gentoo.org> CommitDate: 2023-07-15 17:50:53 +0000 sys-fs/erofs-utils: patch CVE-2023-33551 and CVE-2023-33552 for 1.6 Bug: https://bugs.gentoo.org/907674 Signed-off-by: WANG Xuerui <xen0n@gentoo.org> sys-fs/erofs-utils/erofs-utils-1.6-r1.ebuild | 49 +++++++++ .../files/erofs-utils-1.6-CVE-2023-33551.patch | 70 ++++++++++++ .../files/erofs-utils-1.6-CVE-2023-33552.patch | 117 +++++++++++++++++++++ 3 files changed, 236 insertions(+) Thanks! Please cleanup when ready. |