[SECURITY] Fedora 22 Update: ntfs-3g-2015.3.14-2.fc22

updates at fedoraproject.org updates at fedoraproject.org
Mon Jun 1 17:01:55 UTC 2015 

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-8773
2015-05-25 20:39:15
--------------------------------------------------------------------------------

Name        : ntfs-3g
Product     : Fedora 22
Version     : 2015.3.14
Release     : 2.fc22
URL         : http://www.ntfs-3g.org/
Summary     : Linux NTFS userspace driver
Description :
NTFS-3G is a stable, open source, GPL licensed, POSIX, read/write NTFS
driver for Linux and many other operating systems. It provides safe
handling of the Windows XP, Windows Server 2003, Windows 2000, Windows
Vista, Windows Server 2008 and Windows 7 NTFS file systems. NTFS-3G can
create, remove, rename, move files, directories, hard links, and streams;
it can read and write normal and transparently compressed files, including
streams and sparse files; it can handle special files like symbolic links,
devices, and FIFOs, ACL, extended attributes; moreover it provides full
file access right and ownership support.

--------------------------------------------------------------------------------
Update Information:

Fix CVE-2015-3202.
--------------------------------------------------------------------------------
ChangeLog:

* Fri May 22 2015 Tom Callaway <spot at fedoraproject.org> 2:2015.3.14-2
- fix CVE-2015-3202
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1224103 - CVE-2015-3202 fuse: incorrect filtering of environment variables leading to privilege escalation
        https://bugzilla.redhat.com/show_bug.cgi?id=1224103
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use
su -c 'yum update ntfs-3g' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

More information about the package-announce mailing list