-
e2fsprogs (1.44.6-1ubuntu0.2) disco-security; urgency=medium
* SECURITY UPDATE: Out-of-bounds write
- debian/patches/CVE-2019-5188-*.patch: abort if there is a corrupted
directory block when rehashing and don't try to rehash a deleted directory
in e2fsck/rehash.c, e2fsck/pass1b.c.
- CVE-2019-5188
-- <email address hidden> (Leonidas S. Barbosa) Wed, 22 Jan 2020 11:57:25 -0300
-
e2fsprogs (1.44.6-1ubuntu0.1) disco-security; urgency=medium
* SECURITY UPDATE: Out-of-bounds write on the heap
- debian/patches/CVE-2019-5094.patch: add checks to prevent
buffer overrun in quota code in lib/support/quotaio_tree.c,
lib/support/quotaio_v2.c, lib/support/mkquota.c.
- CVE-2019-5094
-- <email address hidden> (Leonidas S. Barbosa) Thu, 26 Sep 2019 15:47:12 -0300
-
e2fsprogs (1.44.6-1) unstable; urgency=medium
* New upstream version
* Fix e4defrag overflow problem when files are being created while it is
running (Closes: #888899)
* Fix e2fsck so it can correctly handle directories > 2 GiB when the
largedir feature is enabled.
* Fix mke2fs's hugefile creation so it works correctly for certain
unfortunately sized disks/partitions.
* Fix the libext2fs library to be more robust against
invalid/maliciously corrupted block group descriptors.
* Fix mke2fs and debugfs so they can correctly copy in files > 2 GiB.
* Fix debugfs so its stat command can correct supportly display directory
sizes > 2 GiB.
* Fix memory leaks in debugfs, mke2fs, and e2freefrag.
* Avoid unnecessarily linking badblocks with the libblkid shared library.
(Closes: #919958)
-- Theodore Y. Ts'o <email address hidden> Tue, 05 Mar 2019 15:10:40 -0500
-
e2fsprogs (1.44.5-1) unstable; urgency=medium
* New upstream version
* Avoid overflows when tracking the number of files defragged
by e4defrag (Closes: #888899)
* Fix groff formatting nits in various man pages (Closes: #916188)
* Fix location of libext2fs documentation (Closes: #915942)
* Fix regression so we are correctly translating Posix ACL's
in libext2fs
* Use the online free block counts so e2freefrag's percentages
are correct
* Fix a false warning that tune2fs will take long time to change
a UUID if the metadata_csum feature is not enabled
* Fix mk_cmds so it works on a usrmerge system when e2fsprogs is built
on a non-usrmerge system (Closes: #914087)
* E2fsck will avoid offering to set the inline_data feature flag
unnecessarily
* E4defrag will handle the case where it is running as root and it can't
find the file system to open more gracefully (Closes: #907634)
* Fix a bug where resize2fs was failing to update the extent tree
checksums in an corner case
* Fix fuse2fs's command line parsing when options are specified after
the target device/image
* Fix a bug which could cause e2fsprogs tools to segfault on a corrupted
file system where the journal's s_nr_users is impossibly large.
* E2image now includes the mmp block (if needed) when creating a
metadata-only image.
* When e2fsck notices it could optimize an extent tree, it will now ask
"Optimize?" instead of "Fix?", which was confusing some users since it
implied that something was broken.
-- Theodore Y. Ts'o <email address hidden> Sat, 15 Dec 2018 22:46:49 -0500
-
e2fsprogs (1.44.4-2ubuntu1) disco; urgency=medium
* debian/patches/0001-libext2fs-fix-regression-so-we-are-correctly-
transla.patch: cherry-pick upstream fix so we are correctly translating
acls in mkfs.ext4. Closes LP: #1807288.
-- Steve Langasek <email address hidden> Fri, 07 Dec 2018 12:12:52 +0200
-
e2fsprogs (1.44.4-2) unstable; urgency=medium
* tune2fs fix dereference of freed memory after journal
* fix verity support
* Generate NEWS.gz for e2fsprogs's package documentation directory
* Update Debian policy compliance to 4.2.0
* Improve version dependency for libcom-err and ss2 for e2fsprogs
-- Theodore Y. Ts'o <email address hidden> Wed, 22 Aug 2018 19:30:17 -0400
