Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
archlinuxArch LinuxASA-201503-8
HistoryMar 12, 2015 - 12:00 a.m.

e2fsprogs: arbitrary code execution

2015-03-1200:00:00
Arch Linux
lists.archlinux.org
23

EPSS

0

Percentile

10.1%

JSON

If corrupted file system didn’t trip over some corruption check, and
then the file system was modified via tune2fs or debugfs, such that the
superblock was marked dirty and then written out via the closefs() path,
it’s possible that the buffer overrun could be triggered when the file
system is closed.
This issue can lead to arbitrary code execution if a malicious device is
plugged in and the mounting process chooses to run fsck (or other
application using the ext2fs library) on the device’s malicious filesystem.

OSVersionArchitecturePackageVersionFilename
anyanyanye2fsprogs< 1.42.12-2UNKNOWN

Related

nessus 21
openvas 14
gentoo 1
freebsd 1
fedora 2
prion 1
debian 3
osv 2
cvelist 1
ubuntucve 1
suse 2
securityvulns 2
mageia 1
cve 1
nvd 1
ubuntu 1
debiancve 1
ibm 1
nessus
nessus
FreeBSD : e2fsprogs -- potential buffer overflow in closefs() (2a4bcd7d-bbb8-11e4-903c-080027ef73ec)
2015-02-24 00:00:00
openSUSE Security Update : e2fsprogs (openSUSE-2015-399)
2015-06-08 00:00:00
GLSA-201507-22 : e2fsprogs: Arbitrary code execution
2015-07-24 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 201507-22
2015-09-29 00:00:00
Mageia: Security Advisory (MGASA-2015-0088)
2022-01-28 00:00:00
Fedora Update for e2fsprogs FEDORA-2015-2511
2015-03-05 00:00:00
gentoo
gentoo
e2fsprogs: Arbitrary code execution
2015-07-23 00:00:00
freebsd
freebsd
e2fsprogs -- potential buffer overflow in closefs()
2015-02-06 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: e2fsprogs-1.42.12-3.fc20
2015-03-04 10:34:39
[SECURITY] Fedora 21 Update: e2fsprogs-1.42.12-3.fc21
2015-03-04 10:23:11
prion
prion
Heap overflow
2015-02-24 15:59:00
debian
debian
[SECURITY] [DSA 3166-1] e2fsprogs security update
2015-02-22 05:39:23
[SECURITY] [DSA 3166-1] e2fsprogs security update
2015-02-22 05:39:23
[SECURITY] [DLA 162-1] e2fsprogs security update
2015-02-28 21:24:00
osv
osv
e2fsprogs - security update
2015-02-22 00:00:00
e2fsprogs - security update
2015-02-28 00:00:00
cvelist
cvelist
CVE-2015-1572
2015-02-24 15:00:00
ubuntucve
ubuntucve
CVE-2015-1572
2015-02-16 00:00:00
suse
suse
Security update for e2fsprogs (important)
2015-06-23 16:03:02
Security update for e2fsprogs (moderate)
2018-07-28 16:05:25
securityvulns
securityvulns
[USN-2507-1] e2fsprogs vulnerabilities
2015-03-08 00:00:00
libext2fs / e2fsprogs buffer overflow
2015-03-08 00:00:00
mageia
mageia
Updated e2fsprogs packages fix CVE-2015-1572
2015-02-26 11:26:53
cve
cve
CVE-2015-1572
2015-02-24 15:59:05
nvd
nvd
CVE-2015-1572
2015-02-24 15:59:05
ubuntu
ubuntu
e2fsprogs vulnerabilities
2015-02-23 00:00:00
debiancve
debiancve
CVE-2015-1572
2015-02-24 15:59:05
ibm
ibm
Security Bulletin: Cloud Pak for Security contains packages that have multiple vulnerabilities
2022-04-01 16:38:26

EPSS

0

Percentile

10.1%

JSON
Related for ASA-201503-8
nessus21openvas14gentoo1freebsd1fedora2prion1debian3osv2cvelist1ubuntucve1suse2securityvulns2mageia1cve1nvd1ubuntu1debiancve1ibm1