paul Posted December 11, 2007 Report Share Posted December 11, 2007 Rafal Wojtczuk of McAfee AVERT Research found that e2fsprogs contained multiple integer overflows in memory allocations, based on sizes taken directly from filesystem information. These flaws could result in heap-based overflows potentially allowing for the execution of arbitrary code. The updated packages have been patched to correct these issues. Link to comment Share on other sites More sharing options...
Recommended Posts