[Bug 1951239] Re: Merge ntfs-3g 1:2021.8.22-3 from Debian

Launchpad Bug Tracker 1951239 at bugs.launchpad.net
Sat Jan 15 13:02:42 UTC 2022 

This bug was fixed in the package ntfs-3g - 1:2021.8.22-3ubuntu1

---------------
ntfs-3g (1:2021.8.22-3ubuntu1) jammy; urgency=medium

  * debian/control:
    - don't Build-Depends on libfuse-dev since the package is built using
      the --with-fuse=internal option, switch to fuse3

  [ Simon Chopin ]
  * Merge with Debian unstable (LP: #1951239). Remaining changes:
    + Don't install /bin/ntfs-3g as setuid root.
  * Dropped, merged upstream:
    + SECURITY UPDATE: multiple security issues
      debian/patches/aug2021-security.patch: backport fixes from new
      upstream version.
      - CVE-2021-33285, CVE-2021-33286, CVE-2021-33287, CVE-2021-33289,
        CVE-2021-35266, CVE-2021-35267, CVE-2021-35268, CVE-2021-35269,
        CVE-2021-39251, CVE-2021-39252, CVE-2021-39253, CVE-2021-39254,
        CVE-2021-39255, CVE-2021-39256, CVE-2021-39257, CVE-2021-39258,
        CVE-2021-39259, CVE-2021-39260, CVE-2021-39261, CVE-2021-39262,
        CVE-2021-39263

ntfs-3g (1:2021.8.22-3) unstable; urgency=medium

  * Backport upstream documentation updates.
  * Update homepage location (closes: #993989).
  * Update watch file.
  * Update Standards-Version to 4.6.0 .

ntfs-3g (1:2021.8.22-2) unstable; urgency=medium

  * Upload to Sid.

ntfs-3g (1:2021.8.22-1) experimental; urgency=high

  * New upstream release (closes: #988386) fixing CVE-2021-33285,
    CVE-2021-35269, CVE-2021-35268, CVE-2021-33289, CVE-2021-33286,
    CVE-2021-35266, CVE-2021-33287, CVE-2021-35267, CVE-2021-39251,
    CVE-2021-39252, CVE-2021-39253, CVE-2021-39254, CVE-2021-39255,
    CVE-2021-39256, CVE-2021-39257, CVE-2021-39258, CVE-2021-39259,
    CVE-2021-39260, CVE-2021-39261, CVE-2021-39262, CVE-2021-39263: multiple
    buffer overflows.
  * Library transition from libntfs-3g886 to libntfs-3g89 .

ntfs-3g (1:2017.3.23AR.6-1) experimental; urgency=medium

  * New upstream release.
  * Library transition from libntfs-3g885 to libntfs-3g886 .
  * Update debhelper level to 13 .
  * Update Standards-Version to 4.5.1 .

ntfs-3g (1:2017.3.23AR.5-1) experimental; urgency=medium

  * New upstream release.
  * Library transition from libntfs-3g884 to libntfs-3g885 .
  * Update Standards-Version to 4.5.0 .

ntfs-3g (1:2017.3.23AR.4-1) experimental; urgency=medium

  * New upstream release.
  * Prevent installation of hal/fdi/policy (closes: #913281).
  * Library transition from libntfs-3g883 to libntfs-3g884 .

 -- Sebastien Bacher <seb128 at ubuntu.com>  Thu, 13 Jan 2022 15:38:10
+0100

** Changed in: ntfs-3g (Ubuntu)
       Status: Fix Committed => Fix Released

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-33285

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-33286

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-33287

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-33289

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-35266

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-35267

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-35268

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-35269

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-39251

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-39252

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-39253

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-39254

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-39255

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-39256

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-39257

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-39258

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-39259

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-39260

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-39261

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-39262

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-39263

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to ntfs-3g in Ubuntu.
https://bugs.launchpad.net/bugs/1951239

Title:
  Merge ntfs-3g 1:2021.8.22-3 from Debian

Status in ntfs-3g package in Ubuntu:
  Fix Released

Bug description:
  Hi,

  I've worked on merging ntfs-3g 1:2021.8.22-3 from Debian unstable.
  You'll find below a debdiff against the Debian version, as well as a
  bigger debdiff generated against the last Ubuntu version.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/ntfs-3g/+bug/1951239/+subscriptions

More information about the foundations-bugs mailing list