openKylin squashfs-tools package

squashfs-tools 1:4.4-ok3 source package in openKylin

Changelog

squashfs-tools (1:4.4-ok3) yangtze; urgency=medium

  * bank-beaver CVE-2021-41072 安全更新:Squashfs-Tools 4.5 中 unsquash-2.c 中的 squashfs_opendir存在安全漏洞,该漏洞源于一个经过精心设计的squashfs文件系统包含一个符号链接,然后文件系统中相同文件名下的内容会导致unsquashfs首先创建指向预期目录之外的符号链接,然后随后的写操作将导致unsquashfs进程写入通过文件系统中其他地方的符号链接

 -- zhangyh <email address hidden>  Wed, 15 Mar 2023 22:52:20 +0800

Upload details

Uploaded by:
zhangyh
Sponsored by:
Cibot
Uploaded to:
Yangtze V1.0
Original maintainer:
Laszlo Boszormenyi (GCS)
Architectures:
linux-any kfreebsd-any
Section:
kernel
Urgency:
Medium Urgency

Publishing See full publishing history

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
squashfs-tools_4.4.orig.tar.gz 236.2 KiB a7fa4845e9908523c38d4acf92f8a41fdfcd19def41bd5090d7ad767a6dc75c3
squashfs-tools_4.4-ok3.debian.tar.xz 8.2 KiB 8315667e375b1f91fa4d8e9c79a7d095bb5805a65708cb77b30f0b7078a1c28e
squashfs-tools_4.4-ok3.dsc 1.7 KiB 86a948056cbadf0bf1b896886f995e8b006fa5556b506133516cfe00220d2d05

View changes file

Binary packages built by this source

squashfs-tools: Tool to create and append to squashfs filesystems

 Squashfs is a highly compressed read-only filesystem for Linux. It uses zlib
 compression to compress both files, inodes and directories. Inodes in the
 system are very small and all blocks are packed to minimise data overhead.
 Block sizes greater than 4K are supported up to a maximum of 64K.
 .
 Squashfs is intended for general read-only filesystem use, for archival use
 (i.e. in cases where a .tar.gz file may be used), and in constrained block
 device/memory systems (e.g. embedded systems) where low overhead is needed.

squashfs-tools-dbgsym: debug symbols for squashfs-tools