UbuntuUpdates.org

Package "multipath-tools"

Name: multipath-tools

Description:

maintain multipath block device access

Latest version: 0.7.4-2ubuntu3.2
Release: bionic (18.04)
Level: security
Repository: main
Homepage: http://christophe.varoqui.free.fr/

Links


Download "multipath-tools"


Other versions of "multipath-tools" in Bionic

Repository Area Version
base main 0.7.4-2ubuntu3
updates main 0.7.4-2ubuntu3.2

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 0.7.4-2ubuntu3.2 2022-11-17 15:07:22 UTC

  multipath-tools (0.7.4-2ubuntu3.2) bionic-security; urgency=medium

  * SECURITY UPDATE: authorization bypass
    - debian/patches/CVE-2022-41974.patch: ignore duplicated multipathd
      command keys in multipathd/main.c, multipathd/cli.c.
    - CVE-2022-41974

 -- Marc Deslauriers <email address hidden> Mon, 31 Oct 2022 12:52:55 -0400

CVE-2022-41974 multipath-tools 0.7.0 through 0.9.x before 0.9.2 allows local users to obtain root access, as exploited alone or in conjunction with CVE-2022-41973.



About   -   Send Feedback to @ubuntu_updates