Branch p8 update bulletin.

Package apache2-mod_wsgi updated to version 4.5.24-alt0.M80P.1 for branch p8 in task 243463.

Собрать с поддержкой Python3

Package kernel-image-std-debug updated to version 4.9.208-alt0.M80P.1 for branch p8 in task 243877.

Published: 2019-11-20

BDU:2019-04855

Уязвимость функции ext4_empty_dir (fs/ext4/namei.c) ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании

Severity: MEDIUM (5.5) Vector: AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

References:

CVE-2019-19037

Published: 2019-11-21
Modified: 2024-11-21

CVE-2019-19037

ext4_empty_dir in fs/ext4/namei.c in the Linux kernel through 5.3.12 allows a NULL pointer dereference because ext4_read_dirblock(inode,0,DIRENT_HTREE) can be zero.

Severity: MEDIUM (5.5) Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

References:

Version: 2.1.0

Branch p8 update on 2020-01-10

ALT-BU-2020-3581-1

ALT-PU-2019-3408-1

Closed bugs

Bug #37670

ALT-PU-2020-1016-1

Closed vulnerabilities

BDU:2019-04855

CVE-2019-19037