What Are You Looking For?

Sign Up
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-8777
2015-05-25 20:39:22
--------------------------------------------------------------------------------

Name        : ntfs-3g
Product     : Fedora 20
Version     : 2015.3.14
Release     : 2.fc20
URL         : https://www.ntfs-3g.org/
Summary     : Linux NTFS userspace driver
Description :
NTFS-3G is a stable, open source, GPL licensed, POSIX, read/write NTFS
driver for Linux and many other operating systems. It provides safe
handling of the Windows XP, Windows Server 2003, Windows 2000, Windows
Vista, Windows Server 2008 and Windows 7 NTFS file systems. NTFS-3G can
create, remove, rename, move files, directories, hard links, and streams;
it can read and write normal and transparently compressed files, including
streams and sparse files; it can handle special files like symbolic links,
devices, and FIFOs, ACL, extended attributes; moreover it provides full
file access right and ownership support.

--------------------------------------------------------------------------------
Update Information:

Fix CVE-2015-3202.
--------------------------------------------------------------------------------
ChangeLog:

* Fri May 22 2015 Tom Callaway  2:2015.3.14-2
- fix CVE-2015-3202
* Tue Apr  7 2015 Tom Callaway  2:2015.3.14-1
- update to 2015.3.14
* Sat Feb 21 2015 Till Maas  - 2:2014.2.15-8
- Rebuilt for Fedora 23 Change
  https://fedoraproject.org/wiki/Changes/Harden_all_packages_with_position-independent_code
* Tue Jan 13 2015 Tom Callaway  - 2:2014.2.15-7
- add patch to ignore -s option
* Sun Aug 17 2014 Fedora Release Engineering  - 2:2014.2.15-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
* Tue Aug  5 2014 Richard W.M. Jones  - 2:2014.2.15-5
- Add upstream patch to fix fstrim so it works on partitions as well
  as whole disks.
* Thu Jul 31 2014 Richard W.M. Jones  - 2:2014.2.15-4
- Upstream patches which add fstrim support.
* Sat Jun  7 2014 Fedora Release Engineering  - 2:2014.2.15-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
* Thu Apr 24 2014 Tomáš Mráz  - 2:2014.2.15-2
- Rebuild for new libgcrypt
* Wed Feb 26 2014 Tom Callaway  2:2014.2.15-1
- update to 2014.2.15
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1224103 - CVE-2015-3202 fuse: incorrect filtering of environment variables leading to privilege escalation
        https://bugzilla.redhat.com/show_bug.cgi?id=1224103
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use
su -c 'yum update ntfs-3g' at the command line.
For more information, refer to "Managing Software with yum",
available at .

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce

Fedora 20: ntfs-3g Security Update

June 13, 2015
Fix CVE-2015-3202.

Summary

NTFS-3G is a stable, open source, GPL licensed, POSIX, read/write NTFS

driver for Linux and many other operating systems. It provides safe

handling of the Windows XP, Windows Server 2003, Windows 2000, Windows

Vista, Windows Server 2008 and Windows 7 NTFS file systems. NTFS-3G can

create, remove, rename, move files, directories, hard links, and streams;

it can read and write normal and transparently compressed files, including

streams and sparse files; it can handle special files like symbolic links,

devices, and FIFOs, ACL, extended attributes; moreover it provides full

file access right and ownership support.

Update Information:

Fix CVE-2015-3202.

Change Log

* Fri May 22 2015 Tom Callaway 2:2015.3.14-2 - fix CVE-2015-3202 * Tue Apr 7 2015 Tom Callaway 2:2015.3.14-1 - update to 2015.3.14 * Sat Feb 21 2015 Till Maas - 2:2014.2.15-8 - Rebuilt for Fedora 23 Change https://fedoraproject.org/wiki/Changes/Harden_all_packages_with_position-independent_code * Tue Jan 13 2015 Tom Callaway - 2:2014.2.15-7 - add patch to ignore -s option * Sun Aug 17 2014 Fedora Release Engineering - 2:2014.2.15-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Tue Aug 5 2014 Richard W.M. Jones - 2:2014.2.15-5 - Add upstream patch to fix fstrim so it works on partitions as well as whole disks. * Thu Jul 31 2014 Richard W.M. Jones - 2:2014.2.15-4 - Upstream patches which add fstrim support. * Sat Jun 7 2014 Fedora Release Engineering - 2:2014.2.15-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Thu Apr 24 2014 Tomáš Mráz - 2:2014.2.15-2 - Rebuild for new libgcrypt * Wed Feb 26 2014 Tom Callaway 2:2014.2.15-1 - update to 2014.2.15

References

[ 1 ] Bug #1224103 - CVE-2015-3202 fuse: incorrect filtering of environment variables leading to privilege escalation https://bugzilla.redhat.com/show_bug.cgi?id=1224103

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update ntfs-3g' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
Name : ntfs-3g
Product : Fedora 20
Version : 2015.3.14
Release : 2.fc20
URL : https://www.ntfs-3g.org/
Summary : Linux NTFS userspace driver

News

Advisories

HOWTOs

Features

Using Open Source to Ensure Compliance & Data Integrity through Data Governance
Critical Linux Kernel Bugs Lead to DoS, Privilege Escalation - Patch Now!
Unlocking the Future of Authentication: Passkeys vs. Passwords
Empowering MSPs with Straightforward Linux Device Management
A Complete Guide to Torrenting Safely in 2024

About Us

Powered By

Footer Logo