ELSA-2020-5773 - fuse security update
| Type: | SECURITY |
| Severity: | IMPORTANT |
| Release Date: | 2020-07-27 |
Description
[2.9.4-1.0.7.el7]
- \n- bump release number to 2.9.4-1.0.7 (Lans Hung) \n- fix missing Patch1,
Patch2, Patch3 declaration in spec file after using
%setup -q
/usr/bin/cat /usr/src/redhat/SOURCES/fuse-0001-fix-int64_t-conflict-on-aarch64.patch |
/usr/bin/patch -p1 -s
/usr/bin/cat /usr/src/redhat/SOURCES/fuse-0002-fusermount-refuse-unknown-options.patch |
/usr/bin/patch -p1 -s
/usr/bin/cat /usr/src/redhat/SOURCES/fuse-0003-fusermount-don-t-feed-escaped-commas-into-mount-opti.patch |
/usr/bin/patch -p1 -s
[2.9.4-1.0.6.el7]
- Reviewed-by: Laurence Rochfort (Lans Hung)
- add signed-off-by (Lans Hung)
- Security Update based on ELSA-2018-3324 fuse: bypass of the 'user_allow_other' restriction when SELinux is active. [OraBugzilla: 43547][CVE-2018-10906] (Lans Hung)
[2.9.4-1.0.5.el7]
- update to 2.9.4-1.0.5.el7 (lans.hung@oracle.com)
- update changelog in .spec file (lans.hung@oracle.com)
- move patch to buildrpm/ to fix build failure (lans.hung@oracle.com)
- Fix int64_t & uint64_t conflict issue on aarch64. This issue doesn't happen in x86_64 because its bits/sigcontext.h does not include asm/sigcontext.h, which it does on arm64, causing the __s64 definition conflict. This fix uses linux/types.h over manually defined int*_t and uint*_t in fuse_kernel.h. (Lans Hung) [Orabug: 27889694]
Related CVEs
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory |
|
| Oracle Linux 7 (x86_64) | fuse-2.9.4-1.0.7.el7.src.rpm | c3af88e890a8df22ba62e22587b82bcb | ELBA-2021-9072 |
| fuse-2.9.4-1.0.7.el7.x86_64.rpm | 53fc8c0e7ca96daebfede5561a9c381e | ELBA-2021-9072 |
| fuse-devel-2.9.4-1.0.7.el7.i686.rpm | f1b321d1ea0291e2be67d2aa9de0f720 | ELBA-2021-9072 |
| fuse-devel-2.9.4-1.0.7.el7.x86_64.rpm | 591a4fdbcb02db265523880f4411141d | ELBA-2021-9072 |
| fuse-libs-2.9.4-1.0.7.el7.i686.rpm | 0eebdbf7f7136808ecefd154f1928243 | ELBA-2021-9072 |
| fuse-libs-2.9.4-1.0.7.el7.x86_64.rpm | e5f678995e186805d7604ae875185c59 | ELBA-2021-9072 |
This page is generated automatically and has not been checked for errors or omissions. For clarification
or corrections please contact the Oracle Linux ULN team
