-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Sat, 29 Mar 2025 03:11:13 +0100
Source: zfs-linux
Architecture: source
Version: 2.0.3-9+deb11u2
Distribution: bullseye-security
Urgency: medium
Maintainer: Debian ZFS on Linux maintainers <pkg-zfsonlinux-devel@alioth-lists.debian.net>
Changed-By: Daniel Leidert <dleidert@debian.org>
Closes: 1056752 1059322
Changes:
zfs-linux (2.0.3-9+deb11u2) bullseye-security; urgency=medium
.
* Non-maintainer upload by the Debian LTS team.
* d/patches/CVE-2013-20001.patch: Add patch to fix CVE-2013-20001.
- When an NFS share is exported to IPv6 addresses via the sharenfs feature,
there is a silent failure to parse the IPv6 address data, and access is
allowed to everyone. IPv6 restrictions from the configuration are not
applied. With the patch, recognize when the host part of a sharenfs
attribute is an ipv6 Literal and pass that through without modification
(closes: #1059322).
* d/patches/CVE-2023-49298.patch: Add patch to fix CVE-2023-49298.
- Check dnode and its data for dirtiness to prevent applications from
inadvertently replacing file contents with zero-valued bytes and thus
potentially disabling security mechanisms (closes: #1056752).
Checksums-Sha1:
b031ec34582edbb71ea0d6f586431bf84d51789c 3613 zfs-linux_2.0.3-9+deb11u2.dsc
c22c0ed09dee0afa2f8c1c54c5242c1c67678f12 13114404 zfs-linux_2.0.3.orig.tar.gz
c6c92d6cf4abd6e3ab8302c1190dbf8e707afc3a 108344 zfs-linux_2.0.3-9+deb11u2.debian.tar.xz
75f66c45a084b2cafc3f6cf397e278a75a88f93d 16180 zfs-linux_2.0.3-9+deb11u2_amd64.buildinfo
Checksums-Sha256:
ce2086408485bb11bac49278868ba1e8fcd054f88e480156931780ff4336cf5c 3613 zfs-linux_2.0.3-9+deb11u2.dsc
0694f64aa76a3a0a506e20e99b49102c3cb68bef63cb0f0154e50befc387e539 13114404 zfs-linux_2.0.3.orig.tar.gz
23b4faf5a5a5168d47eedfd5015800ce6bdd84fc998182b0bf6f91db2fed6fae 108344 zfs-linux_2.0.3-9+deb11u2.debian.tar.xz
f8d62c65c494237fda615b96049f389ac38883c8290067c4aeb42b042763d5a8 16180 zfs-linux_2.0.3-9+deb11u2_amd64.buildinfo
Files:
418657da1f4c56aaab6c23d210ccc015 3613 contrib/kernel optional zfs-linux_2.0.3-9+deb11u2.dsc
54c5aea4af1e46b94787559288d1dec3 13114404 contrib/kernel optional zfs-linux_2.0.3.orig.tar.gz
d7a911ac1113daa69d96164ea79f4c73 108344 contrib/kernel optional zfs-linux_2.0.3-9+deb11u2.debian.tar.xz
b207447edc2bc1a3d27eed205be0d48f 16180 contrib/kernel optional zfs-linux_2.0.3-9+deb11u2_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----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=Uv6H
-----END PGP SIGNATURE-----
Attachment:
pgp2FxPPggrzP.pgp
Description: PGP signature