SECURITY: Fedora 34 Update: ntfs-3g-2021.8.22-1.fc34
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2021-c0235d9d79
2021-09-04 19:31:30.714719
--------------------------------------------------------------------------------
Name : ntfs-3g
Product : Fedora 34
Version : 2021.8.22
Release : 1.fc34
URL : https://www.tuxera.com/company/open-source/
Summary : Linux NTFS userspace driver
Description :
NTFS-3G is a stable, open source, GPL licensed, POSIX, read/write NTFS
driver for Linux and many other operating systems. It provides safe
handling of the Windows XP, Windows Server 2003, Windows 2000, Windows
Vista, Windows Server 2008 and Windows 7 NTFS file systems. NTFS-3G can
create, remove, rename, move files, directories, hard links, and streams;
it can read and write normal and transparently compressed files, including
streams and sparse files; it can handle special files like symbolic links,
devices, and FIFOs, ACL, extended attributes; moreover it provides full
file access right and ownership support.
--------------------------------------------------------------------------------
Update Information:
Update NTFS-3G to 2021.8.22 to fix multiple CVEs ---- New upstream development
version 1.45.7. ---- Upstream patch to work with qemu 6.1 (RHBZ#1998820)
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 31 2021 Neal Gompa - 2:2021.8.22-1
- Rebase to version 2021.8.22 to fix various CVEs (RHBZ#1999869)
- Clean up old cruft for RHEL < 7
- Split libraries out to libs subpackage
* Thu Jul 22 2021 Fedora Release Engineering - 2:2017.3.23-17
- Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
* Wed Feb 24 2021 Tom Callaway - 2:2017.3.23-16
- correct URL
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1998820 - libguestfs breaks with qemu 6.1 with error "Backing file specified without backing format"
https://bugzilla.redhat.com/show_bug.cgi?id=1998820
[ 2 ] Bug #1999788 - ntfs-3g: Multiple buffer overflows in all versions [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1999788
[ 3 ] Bug #1999869 - ntfs-3g-2021.8.22 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1999869
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-c0235d9d79' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
A ntfs-3g security update has been released for Fedora 34.