Your message dated Fri, 22 May 2015 17:49:28 +0000
with message-id <[email protected]>
and subject line Bug#786475: fixed in ntfs-3g 1:2014.2.15AR.3-2
has caused the Debian Bug report #786475,
regarding ntfs-3g: CVE-2015-3202
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
786475: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=786475
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Source: ntfs-3g
Version: 1:2013.1.13AR.3-2
Severity: grave
Tags: security patch upstream
Justification: user security hole
Hi Laszlo
ntfs-3g in jessie and above is similarly affected by CVE-2015-3202
since ntfs-3g since 1:2013.1.13AR.3-2 builds with internal fuse copy.
The patch I have used to prepare the updates for jessie is attached.
ntfs-3g though should try to use the system fuse and not the embedded
copy, could you check to switch this back?
Regards,
Salvatore
Description: Fix CVE-2015-3202
Missing scrubbing of the environment before executing a mount or umount
of a filesystem.
Origin: backport
Author: Miklos Szeredi <[email protected]>
Last-Update: 2015-05-19
---
lib/mount_util.c | 23 +++++++++++++++++------
1 file changed, 17 insertions(+), 6 deletions(-)
--- a/libfuse-lite/mount_util.c
+++ b/libfuse-lite/mount_util.c
@@ -66,6 +66,7 @@ int fuse_mnt_add_mount(const char *progn
return -1;
}
if (res == 0) {
+ char *env = NULL;
char templ[] = "/tmp/fusermountXXXXXX";
char *tmp;
@@ -87,8 +88,8 @@ int fuse_mnt_add_mount(const char *progn
exit(1);
}
rmdir(tmp);
- execl("/sbin/mount", "/sbin/mount", "-F", type, "-o", opts,
- fsname, mnt, NULL);
+ execle("/sbin/mount", "/sbin/mount", "-F", type, "-o", opts,
+ fsname, mnt, NULL, &env);
fprintf(stderr, "%s: failed to execute /sbin/mount: %s\n", progname,
strerror(errno));
exit(1);
@@ -120,9 +121,16 @@ int fuse_mnt_umount(const char *progname
return -1;
}
if (res == 0) {
+ char *env = NULL;
+
setuid(geteuid());
- execl("/sbin/umount", "/sbin/umount", !lazy ? "-f" : NULL, mnt,
- NULL);
+ if (!lazy) {
+ execle("/sbin/umount", "/sbin/umount", "-f", mnt,
+ NULL, &env);
+ } else {
+ execle("/sbin/umount", "/sbin/umount", mnt,
+ NULL, &env);
+ }
fprintf(stderr, "%s: failed to execute /sbin/umount: %s\n", progname,
strerror(errno));
exit(1);
@@ -302,6 +310,7 @@ int fuse_mnt_add_mount(const char *progn
return 0;
}
if (res == 0) {
+ char *env = NULL;
char templ[] = "/tmp/fusermountXXXXXX";
char *tmp;
@@ -325,8 +334,8 @@ int fuse_mnt_add_mount(const char *progn
exit(1);
}
rmdir(tmp);
- execl("/bin/mount", "/bin/mount", "-i", "-f", "-t", type, "-o", opts,
- fsname, mnt, NULL);
+ execle("/bin/mount", "/bin/mount", "-i", "-f", "-t", type, "-o", opts,
+ fsname, mnt, NULL, &env);
fprintf(stderr, "%s: failed to execute /bin/mount: %s\n", progname,
strerror(errno));
exit(1);
--- End Message ---
--- Begin Message ---
Source: ntfs-3g
Source-Version: 1:2014.2.15AR.3-2
We believe that the bug you reported is fixed in the latest version of
ntfs-3g, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Laszlo Boszormenyi (GCS) <[email protected]> (supplier of updated ntfs-3g package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Fri, 22 May 2015 16:15:14 +0000
Source: ntfs-3g
Binary: ntfs-3g ntfs-3g-dbg ntfs-3g-dev ntfs-3g-udeb
Architecture: source amd64
Version: 1:2014.2.15AR.3-2
Distribution: unstable
Urgency: high
Maintainer: Laszlo Boszormenyi (GCS) <[email protected]>
Changed-By: Laszlo Boszormenyi (GCS) <[email protected]>
Description:
ntfs-3g - read/write NTFS driver for FUSE
ntfs-3g-dbg - read/write NTFS driver for FUSE (debug)
ntfs-3g-dev - read/write NTFS driver for FUSE (development)
ntfs-3g-udeb - read/write NTFS driver for FUSE (udeb)
Closes: 786475
Changes:
ntfs-3g (1:2014.2.15AR.3-2) unstable; urgency=high
.
* Apply 0002-CVE-2015-3202.patch to fix CVE-2015-3202 in the embedded FUSE
library (closes: #786475).
* Restrict the FUSE version in Build-Depends to the fixed package version
to be extra safe.
Checksums-Sha1:
6a2768ba641d244749fcc2b4e5077b5c5588dac1 2148 ntfs-3g_2014.2.15AR.3-2.dsc
2f3346c417f92b9f4b88ed8a67adea19d6a69c12 22100
ntfs-3g_2014.2.15AR.3-2.debian.tar.xz
78f3f1d4a71d87c7f5edd5fa6d54c2b98c3662ca 1300610
ntfs-3g-dbg_2014.2.15AR.3-2_amd64.deb
626ff4ea5e67bc909f00f9abf4278a37cc782c6e 233206
ntfs-3g-dev_2014.2.15AR.3-2_amd64.deb
d0ce0a291a4b8aa8ea37cbf9a0ac1ba011c21d8e 219248
ntfs-3g-udeb_2014.2.15AR.3-2_amd64.udeb
92ecaaa6685320e5782d560f95c46463a739123b 489054
ntfs-3g_2014.2.15AR.3-2_amd64.deb
Checksums-Sha256:
82d6d12af0f7aa67feadc3b0eaefe30b31d7bda4642368f53ea4336111c7ab8f 2148
ntfs-3g_2014.2.15AR.3-2.dsc
be45d393cceefe87f2131fe69336d43ae2e0240c0c76d14394b25cdf0d148e3b 22100
ntfs-3g_2014.2.15AR.3-2.debian.tar.xz
93f7cd8a5d1a17edaf10ee81ece1ac817564a2430ed63050ce853adf15dc7128 1300610
ntfs-3g-dbg_2014.2.15AR.3-2_amd64.deb
b323a7b8f62ad6ce662e09fed3e4a1b8fb7f8a753fb4b740d0fe2c473923822a 233206
ntfs-3g-dev_2014.2.15AR.3-2_amd64.deb
a91fb2d2fcb2dd59c5d63bf0108b54ae4014dab17bc036651a768aa698e552eb 219248
ntfs-3g-udeb_2014.2.15AR.3-2_amd64.udeb
04eda3ff45f7a77fcdd7f4b3793020c37dab17f30f413c587085ac5e2d13644e 489054
ntfs-3g_2014.2.15AR.3-2_amd64.deb
Files:
fb68643e49594fde478aebec35f67e35 2148 otherosfs optional
ntfs-3g_2014.2.15AR.3-2.dsc
272eae1da60940dfdbe0c037c911142d 22100 otherosfs optional
ntfs-3g_2014.2.15AR.3-2.debian.tar.xz
ed09b27aa7d901dfef5fae08c8cdd0bb 1300610 debug extra
ntfs-3g-dbg_2014.2.15AR.3-2_amd64.deb
aa3bb460d6453caa9ddcfab13ff9b72d 233206 libdevel optional
ntfs-3g-dev_2014.2.15AR.3-2_amd64.deb
3dd9d1872292e971e6d4b2d60d34e1f6 219248 debian-installer optional
ntfs-3g-udeb_2014.2.15AR.3-2_amd64.udeb
533a37399efcb1b4198ad267b63f79e4 489054 otherosfs optional
ntfs-3g_2014.2.15AR.3-2_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=TMW/
-----END PGP SIGNATURE-----
--- End Message ---
