Linux distributors fix vulnerability in e2fsprogs file system tools
This is one security vulnerability which is likely to be primarily of interest to forensic investigators and data rescue services. As a result of multiple integer overflows in the libext2f Linux library, specially crafted file systems or images can be used to inject malicious code onto a computer performing an analysis and execute it with the user's privileges. According to Linux distributor Ubuntu, calling fsck is sufficient to trigger this condition. The crafted image can for example be located on a hard drive which is to be analysed. All Ext2 Filesystem Utilities (e2fsprogs) programs are affected. Both Ubuntu and Novell have already released new packages for their distributions.
- SUSE Security Summary Report SUSE-SR:2007:025, security advisory from Suse
- e2fsprogs vulnerability, security advisory from Ubuntu
(mba)