Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Fedora 20 FEDORA-2015-8782 Critical: FUSE Privilege Escalation

fedora
Calendar Grey June 13, 2015
Dist Fedora Esm H88
An important security patch for Fedora 20 fixes a privilege escalation vulnerability in fuse version 2.9.4. Discover more details.
Update to 2.9.4, which fixes CVE-2015-3202.

Summary

With FUSE it is possible to implement a fully functional filesystem in a

userspace program. This package contains the FUSE userspace tools to

mount a FUSE filesystem.

Update Information:

Update to 2.9.4, which fixes CVE-2015-3202.

Topics%20covered

Topics Covered

security advisory fedora critical software update privilege escalation fuse

Change Log

* Fri May 22 2015 Tom Callaway 2.9.4-1 - update to 2.9.4 - fixes CVE-2015-3202 * Sat Aug 16 2014 Fedora Release Engineering - 2.9.3-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sat Jun 7 2014 Fedora Release Engineering - 2.9.3-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild

References


[ 1 ] Bug #1224103 - CVE-2015-3202 fuse: incorrect filtering of environment variables leading to privilege escalation https://bugzilla.redhat.com/show_bug.cgi?id=1224103

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update fuse' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
critical
Lowest
Low
Medium
High
Critical

Name: fuse
Product: Fedora 20
Version: 2.9.4
Release: 1.fc20
URL: https://github.com/libfuse/libfuse
Summary: File System in Userspace (FUSE) utilities

Topics%20covered

Topics Covered

security advisory fedora critical software update privilege escalation fuse

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here