[Secure-testing-team] Security update for fuse
Moritz Muehlenhoff
jmm at inutil.org
Sat Jun 4 11:03:38 UTC 2005
Roger Leigh wrote:
> There's a serious vulnerability in fuse; see bug #311634.
> This does not yet have a CVE ref, but I found
> http://secunia.com/advisories/15561/
>
> I've prepared updates for both sid and sarge:
> http://people.debian.org/~rleigh/fuse/sarge-security/
>
> Due to the release being so close, I haven't uploaded either of these.
> I'm not a security expert, so thought you might be better reviewing
> them first, in case I've missed something.
FWIW, the patch is identical to the one posted to linux-kernel by
Miklos Szeredi, the official fuse kernel maintainer, so it seems
safe.
Cheers,
Moritz
More information about the Secure-testing-team
mailing list