[ANNOUNCE] util-linux stable realase v2.37.3

From: Karel Zak
Date: Mon Jan 24 2022 - 06:13:26 EST

Next message: Quentin Schulz: "Re: [PATCH] arm64: dts: rockchip: fix rk3399-puma eMMC HS400 signal integrity"
Previous message: Helge Deller: "Re: [PATCH 2/2] Revert "fbcon: Disable accelerated scrolling""
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

The util-linux release v2.37.3 is available at

http://www.kernel.org/pub/linux/utils/util-linux/v2.37/

Feedback and bug reports, as always, are welcomed.

Karel

util-linux 2.37.3 Release Notes
===============================

This release fixes two security mount(8) and umount(8) issues:

CVE-2021-3996
Improper UID check in libmount allows an unprivileged user to unmount FUSE
filesystems of users with similar UID.

CVE-2021-3995
This issue is related to parsing the /proc/self/mountinfo file allows an
unprivileged user to unmount other user's filesystems that are either
world-writable themselves or mounted in a world-writable directory.

--
Karel Zak <kzak@xxxxxxxxxx>
http://karelzak.blogspot.com

Next message: Quentin Schulz: "Re: [PATCH] arm64: dts: rockchip: fix rk3399-puma eMMC HS400 signal integrity"
Previous message: Helge Deller: "Re: [PATCH 2/2] Revert "fbcon: Disable accelerated scrolling""
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]