Bug#793496: xfsprogs: CVE-2012-2150: xfs_metadump information disclosure

xfs

Bug#793496: xfsprogs: CVE-2012-2150: xfs_metadump information disclosure

To:	submit@xxxxxxxxxxxxxxx
Subject:	Bug#793496: xfsprogs: CVE-2012-2150: xfs_metadump information disclosure flaw
From:	Raphael Hertzog <hertzog@xxxxxxxxxx>
Date:	Fri, 24 Jul 2015 17:53:50 +0200
Delivered-to:	xfs@xxxxxxxxxxx
Delivered-to:	submit@xxxxxxxxxxxxxxx
Reply-to:	Raphael Hertzog <hertzog@xxxxxxxxxx>, 793496@xxxxxxxxxxxxxxx
Resent-cc:	XFS Development Team <xfs@xxxxxxxxxxx>
Resent-date:	Fri, 24 Jul 2015 15:57:02 +0000
Resent-from:	Raphael Hertzog <hertzog@xxxxxxxxxx>
Resent-message-id:	<handler.793496.B.143775323320248@xxxxxxxxxxxxxxx>
Resent-to:	debian-bugs-dist@xxxxxxxxxxxxxxxx
User-agent:	Mutt/1.5.23 (2014-03-12)

Source: xfsprogs
Severity: important
Tags: security

Hi,

the following vulnerability was published for xfsprogs.

CVE-2012-2150[0]:
xfs_metadump information disclosure flaw

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2012-2150
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2150
Please adjust the affected versions in the BTS as needed.

There are no upstream patches yet but they should be published shortly
according to https://marc.info/?l=oss-security&m=143766249112576&w=2

Cheers,
-- 
RaphaÃl Hertzog â Debian Developer

Support Debian LTS: http://www.freexian.com/services/debian-lts.html
Learn to master Debian: http://debian-handbook.info/get/

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Bug#793496: xfsprogs: CVE-2012-2150: xfs_metadump information disclosure flaw, Raphael Hertzog <= Processed (with 1 errors): Merging duplicate bug, Debian Bug Tracking System

Previous by Date:	Bug#793495: CVE-2012-2150 xfsprogs: xfs_metadump information disclosure, Moritz Muehlenhoff
Next by Date:	Bug#793496: About the security issues affecting xfsprogs in Squeeze, Raphael Hertzog
Previous by Thread:	Bug#793495: CVE-2012-2150 xfsprogs: xfs_metadump information disclosure, Moritz Muehlenhoff
Next by Thread:	Processed (with 1 errors): Merging duplicate bug, Debian Bug Tracking System
Indexes:	[Date] [Thread] [Top] [All Lists]