openSUSE Leap 15.3: 2021:2971-1 Important NTFS-3G Security Fix
opensuse
September 7, 2021
An update that fixes 21 vulnerabilities is now available
Description
This update for ntfs-3g_ntfsprogs fixes the following issues:
Update to version 2021.8.22 (bsc#1189720):
* Fixed compile error when building with libfuse < 2.8.0
* Fixed obsolete macros in configure.ac
* Signalled support of UTIME_OMIT to external libfuse2
* Fixed an improper macro usage in ntfscp.c
* Updated the repository change in the README
* Fixed vulnerability threats caused by maliciously tampered NTFS
partitions
* Security fixes: CVE-2021-33285, CVE-2021-33286, CVE-2021-33287,
CVE-2021-33289, CVE-2021-35266, CVE-2021-35267, CVE-2021-35268,
CVE-2021-35269, CVE-2021-39251, CVE-2021-39252, CVE-2021-39253,
CVE_2021-39254, CVE-2021-39255, CVE-2021-39256, CVE-2021-39257,
CVE-2021-39258, CVE-2021-39259, CVE-2021-39260, CVE-2021-39261,
CVE-2021-39262, CVE-2021-39263.
- Library soversion is now 89
* Changes in version 2017.3.23
* Delegated processing of special reparse points to external plugins
* Allowed kernel...
Read the Full Advisory
Patch
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 15.3:
zypper in -t patch openSUSE-SLE-15.3-2021-2971=1
Package List
- openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64):
libntfs-3g-devel-2021.8.22-3.8.1
libntfs-3g87-2021.8.22-3.8.1
libntfs-3g87-debuginfo-2021.8.22-3.8.1
ntfs-3g-2021.8.22-3.8.1
ntfs-3g-debuginfo-2021.8.22-3.8.1
ntfs-3g_ntfsprogs-debuginfo-2021.8.22-3.8.1
ntfs-3g_ntfsprogs-debugsource-2021.8.22-3.8.1
ntfsprogs-2021.8.22-3.8.1
ntfsprogs-debuginfo-2021.8.22-3.8.1
ntfsprogs-extra-2021.8.22-3.8.1
ntfsprogs-extra-debuginfo-2021.8.22-3.8.1
References
https://www.suse.com/security/cve/CVE-2019-9755.html
https://www.suse.com/security/cve/CVE-2021-33285.html
https://www.suse.com/security/cve/CVE-2021-33286.html
https://www.suse.com/security/cve/CVE-2021-33287.html
https://www.suse.com/security/cve/CVE-2021-33289.html
https://www.suse.com/security/cve/CVE-2021-35266.html
https://www.suse.com/security/cve/CVE-2021-35267.html
https://www.suse.com/security/cve/CVE-2021-35268.html
https://www.suse.com/security/cve/CVE-2021-35269.html
https://www.suse.com/security/cve/CVE-2021-39251.html
https://www.suse.com/security/cve/CVE-2021-39252.html
https://www.suse.com/security/cve/CVE-2021-39253.html
https://www.suse.com/security/cve/CVE-2021-39255.html
https://www.suse.com/security/cve/CVE-2021-39256.html
https://www.suse.com/security/cve/CVE-2021-39257.html
https://www.suse.com/security/cve/CVE-2021-39258.html
https://www.suse.com/security/cve/CVE-2021-39259.html
https://www.suse.com/security/cve/CVE-2021-39260.html
https://www.suse.com/security/cve/CVE-2021-3926...
Read the Full Advisory
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Announcement ID: openSUSE-SU-2021:2971-1
Rating: important
Affected Products:
openSUSE Leap 15.3
.
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!