squashfs-tools 1:4.4-1ubuntu0.1 source package in Ubuntu
Changelog
squashfs-tools (1:4.4-1ubuntu0.1) focal-security; urgency=medium
* SECURITY UPDATE: Directory traversal via relative paths in unsquashfs
(LP: #1941790)
- debian/patches/0001-CVE-2021-40153.patch:
Treat squashfs images which contain files with names containing
constructs like ../ as corrupted in unsquash-N.c
- CVE-2021-40153
-- Alex Murray <email address hidden> Fri, 27 Aug 2021 15:03:47 +0930
Upload details
- Uploaded by:
- Alex Murray
- Uploaded to:
- Focal
- Original maintainer:
- Ubuntu Developers
- Architectures:
- linux-any kfreebsd-any
- Section:
- kernel
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| squashfs-tools_4.4.orig.tar.gz | 236.2 KiB | a7fa4845e9908523c38d4acf92f8a41fdfcd19def41bd5090d7ad767a6dc75c3 |
| squashfs-tools_4.4-1ubuntu0.1.debian.tar.xz | 13.3 KiB | fb009b9d1f0d7ee49db500083829895d120a23ad960944aef9a349a79355c701 |
| squashfs-tools_4.4-1ubuntu0.1.dsc | 1.7 KiB | 3e4c4428eb46407fd03a8fed22e5b8662943826aa8a7869a276f22cdb5f7bed7 |
Available diffs
Binary packages built by this source
- squashfs-tools: Tool to create and append to squashfs filesystems
Squashfs is a highly compressed read-only filesystem for Linux. It uses zlib
compression to compress both files, inodes and directories. Inodes in the
system are very small and all blocks are packed to minimise data overhead.
Block sizes greater than 4K are supported up to a maximum of 64K.
.
Squashfs is intended for general read-only filesystem use, for archival use
(i.e. in cases where a .tar.gz file may be used), and in constrained block
device/memory systems (e.g. embedded systems) where low overhead is needed.
- squashfs-tools-dbgsym: debug symbols for squashfs-tools
