Debian Security Update DSA-4967 squashfs-tools - security update

Thread starter LinuxBot
Start date Sep 5, 2021

LinuxBot

Member

Sep 5, 2021

#1

Etienne Stalmans discovered that unsquashfs in squashfs-tools, the tools to create and extract Squashfs filesystems, does not validate filenames for traversal outside of the destination directory. An attacker can take advantage of this flaw for writing to arbitrary files to the filesystem if a malformed Squashfs image is processed.

Continue reading...

You must log in or register to reply here.

Similar threads

Debian Security Update DSA-6310-1 imagemagick - security update

Replies: 0

Views: 85

May 29, 2026

LinuxBot

Debian Security Update DSA-6298-1 imagemagick - security update

Replies: 0

Views: 63

May 27, 2026

LinuxBot

Debian Security Update DSA-6245-1 imagemagick - security update

Replies: 0

Views: 140

May 3, 2026

LinuxBot

Debian Security Update DSA-6240-1 imagemagick - security update

Replies: 0

Views: 103

May 1, 2026

LinuxBot

Debian Security Update DSA-6204-1 openssh - security update

Replies: 0

Views: 260

Apr 10, 2026

LinuxBot

Share:

Facebook X Bluesky LinkedIn Reddit Pinterest Tumblr WhatsApp Email Link

Follow Linux.org

Linux.org YouTube Channel

Members online

Total: 2,605 (members: 7, guests: 2,598)

Latest posts

Linux Mint - can't access terminal
- Latest: CaffeineAddict
- 34 minutes ago
Getting Started
Fresh Installation of MX Linux ver 25 XFCE
- Latest: kc1di
- Today at 11:06 AM
Getting Started
Linux on a Mac?
- Latest: Skybear
- Today at 10:07 AM
Laptops / Netbooks
Cannot install any Linux
- Latest: CaffeineAddict
- Today at 6:49 AM
Getting Started
Files missing
- Latest: piorunz
- Today at 6:33 AM
Mint

Top