SUSE-SU-2021:14693-1

See a problem?
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2021:14693-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2021:14693-1
Related
Published
2021-04-14T17:08:56Z
Modified
2021-04-14T17:08:56Z
Summary
Security update for util-linux
Details

This update for util-linux fixes the following issues:

  • CVE-2015-5218: Prevent colcrt buffer overflow. (bsc#949754)

These non-security issues were fixed:

  • Mount crashes when trying to mount shmfs while SELinux is active. (bsc#1040414)
  • Fix lsblk -f on CCISS and other devices with nodes in /dev subdirectory. (bsc#924994)
  • Fix script(1) hang caused by mis-interpreted EOF on big-endian platforms. (bsc#930236)
  • Do not segfault when TERM is not defined or wrong. (bsc#903440)
  • Update and fix mount XFS documentation. (bsc#925705)
  • Fix recognition of /dev/dm-N partitions names. (bsc#931607)
  • Follow SUSE Linux Enterprise 11 device mapper partition names configuration. (bsc#931607)
  • Fix recognition of device mapper partitions. (bsc#923904)
  • Fix fsck -C {fd} parsing. (bsc#923777, bsc#903738)
References

Affected packages

SUSE:Linux Enterprise Point of Sale 11 SP3 / util-linux

Package

Name
util-linux
Purl
purl:rpm/suse/util-linux&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.19.1-6.62.7.1

Ecosystem specific 

{
    "binaries": [
        {
            "uuid-runtime": "2.19.1-6.62.7.1",
            "util-linux": "2.19.1-6.62.7.1",
            "libuuid1": "2.19.1-6.62.7.1",
            "libblkid1": "2.19.1-6.62.7.1",
            "util-linux-lang": "2.19.1-6.62.7.1"
        }
    ]
}