Oval Definition:	oval:com.redhat.rhsa:def:20204011
Revision Date: 2020-09-29 Version: 638 Title: RHSA-2020:4011: e2fsprogs security and bug fix update (Moderate) Description: The e2fsprogs packages provide a number of utilities for creating, checking, modifying, and correcting the ext2, ext3, and ext4 file systems. Security Fix(es): e2fsprogs: Crafted ext4 partition leads to out-of-bounds write (CVE-2019-5094) e2fsprogs: Out-of-bounds write in e2fsck/rehash.c (CVE-2019-5188) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.9 Release Notes linked from the References section. Family: unix Class: patch Status: Reference(s): CVE-2019-5094 CVE-2019-5188 RHSA-2020:4011 Platform(s): Red Hat Enterprise Linux 7 Product(s): Definition Synopsis Red Hat Enterprise Linux must be installed OR Package Information Red Hat Enterprise Linux 7 is installed AND e2fsprogs is earlier than 0:1.42.9-19.el7 AND e2fsprogs is signed with Red Hat redhatrelease2 key e2fsprogs-devel is earlier than 0:1.42.9-19.el7 AND e2fsprogs-devel is signed with Red Hat redhatrelease2 key e2fsprogs-libs is earlier than 0:1.42.9-19.el7 AND e2fsprogs-libs is signed with Red Hat redhatrelease2 key e2fsprogs-static is earlier than 0:1.42.9-19.el7 AND e2fsprogs-static is signed with Red Hat redhatrelease2 key libcom_err is earlier than 0:1.42.9-19.el7 AND libcom_err is signed with Red Hat redhatrelease2 key libcom_err-devel is earlier than 0:1.42.9-19.el7 AND libcom_err-devel is signed with Red Hat redhatrelease2 key libss is earlier than 0:1.42.9-19.el7 AND libss is signed with Red Hat redhatrelease2 key libss-devel is earlier than 0:1.42.9-19.el7 AND libss-devel is signed with Red Hat redhatrelease2 key
BACK