ELSA-2024-3139

ULN >
Oracle Linux Errata repository >
ELSA-2024-3139

ELSA-2024-3139 - squashfs-tools security update

Type:	SECURITY
Severity:	MODERATE
Release Date:	2024-05-23

Description

[4.3-21]
- CVE-2021-41072 squashfs-tools: additional write outside destination directory exploit fix
CVE-2021-40153 squashfs-tools: unvalidated filepaths allow writing outside of destination
Resolves: rhbz#2007303 rhbz#2000637

Related CVEs

CVE-2021-40153

CVE-2021-41072

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	squashfs-tools-4.3-21.el8.src.rpm	3a6d32a173338c7181791d62f90a618e	-	ol8_aarch64_baseos_latest
	squashfs-tools-4.3-21.el8.src.rpm	3a6d32a173338c7181791d62f90a618e	-	ol8_aarch64_u10_baseos_base
	squashfs-tools-4.3-21.el8.aarch64.rpm	181ab8b7298261dc7cc04bb910dd7d2b	-	ol8_aarch64_baseos_latest
	squashfs-tools-4.3-21.el8.aarch64.rpm	181ab8b7298261dc7cc04bb910dd7d2b	-	ol8_aarch64_u10_baseos_base

Oracle Linux 8 (x86_64)	squashfs-tools-4.3-21.el8.src.rpm	3a6d32a173338c7181791d62f90a618e	-	ol8_x86_64_baseos_latest
	squashfs-tools-4.3-21.el8.src.rpm	3a6d32a173338c7181791d62f90a618e	-	ol8_x86_64_u10_baseos_base
	squashfs-tools-4.3-21.el8.x86_64.rpm	983cf150596c568c9ef7c76a9faadf74	-	ol8_x86_64_baseos_latest
	squashfs-tools-4.3-21.el8.x86_64.rpm	983cf150596c568c9ef7c76a9faadf74	-	ol8_x86_64_u10_baseos_base

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691