UbuntuUpdates.org

Package "squashfs-tools"


Moved to xenial:main:updates


Name: squashfs-tools

Description:

Tool to create and append to squashfs filesystems
Latest version: *DELETED*
Release: xenial (16.04)
Level: proposed
Repository: main
Homepage: http://squashfs.sourceforge.net/

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "squashfs-tools"

APT INSTALL

Other versions of "squashfs-tools" in Xenial

Repository Area Version
base main 1:4.3-3ubuntu2
updates main 1:4.3-3ubuntu2.16.04.3

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: *DELETED* 2018-08-17 02:33:34 UTC
Moved to xenial:main:updates
No changelog for deleted or moved packages.

Version: 1:4.3-3ubuntu2.16.04.3 2018-08-09 01:07:19 UTC

  squashfs-tools (1:4.3-3ubuntu2.16.04.3) xenial; urgency=medium

  * Re-number current patches to match bionic/cosmic:
    - 0001-kfreebsd.patch
    - 0002-fix_phys_mem_calculation.patch
    - 0003-CVE-2015-4645_and_CVE-2015-4646.patch
    - 0004-unsquashfs-add-support-for-LZMA-magics.patch
    - 0005-add-fstime.patch
    - 0006-uptream-fix-race.patch
    - 0009-unsquashfs-preserve-symlink-times.patch
    - 0010-use-macros-not-raw-octal-with-chmod.patch
    - 0011-also-set-stickybit-as-non-root.patch

  * Sync patch content with bionic/cosmic (fuzz).
    - 0005-add-fstime.patch: Fix -Wint-conversion warning by
      initializing the time_t variable with (time_t)0 instead of NULL
    - 0006-uptream-fix-race.patch: Fix typo in description
    - 0003-CVE-2015-4645_and_CVE-2015-4646.patch: Fix typo in description

  * Cherry-pick two new fixes from bionic/cosmic: (LP: #1785499)
    - 0007-fix-2GB-limit-in-mksquashfs.patch
    - 0008-preserve_file_capabilities.patch

 -- Stéphane Graber <email address hidden> Sun, 05 Aug 2018 23:49:09 -0400
1785499 Make squashfs-tools in Xenial in sync with Bionic and Cosmic
CVE-2015-4645 Integer overflow in the read_fragment_table_4 function in unsquash-4.c in Squashfs and sasquatch allows remote attackers to cause a denial of service
CVE-2015-4646 (1) unsquash-1.c, (2) unsquash-2.c, (3) unsquash-3.c, and (4) unsquash-4.c in Squashfs and sasquatch allow remote attackers to cause a denial of serv

Version: *DELETED* 2018-07-18 10:06:49 UTC
Moved to xenial:main:updates
No changelog for deleted or moved packages.

Version: 1:4.3-3ubuntu2.16.04.2 2018-07-06 18:07:14 UTC

  squashfs-tools (1:4.3-3ubuntu2.16.04.2) xenial; urgency=medium

  * debian/patches/0008-use-macros-not-raw-octal-with-chmod.patch,
    debian/patches/0009-also-set-stickybit-as-non-root.patch: apply stickybit
    when run as non-root (LP: #1779914). Patches thanks to Tyler Hicks.

 -- Jamie Strandboge <email address hidden> Thu, 05 Jul 2018 19:53:27 +0000
1779914 unsquashfs does not preserve sticky bit when run as non-root

Version: *DELETED* 2018-01-05 07:06:41 UTC
Moved to xenial:main:updates
No changelog for deleted or moved packages.


About   -   Send Feedback to @ubuntu_updates