Package name
udisks
Date
2014-03-17
Advisory ID
MDVSA-2014:064
Affected versions
MBS1 x86_64

Problem description

Updated udisks packages fixes security vulnerability:

A flaw was found in the way udisks and udisks2 handled long path
names. A malicious, local user could use this flaw to create a
specially-crafted directory structure that could lead to arbitrary
code execution with the privileges of the udisks daemon (root)
(CVE-2014-0004).

Updated packages

MBS1 x86_64

 b7b8138c781ce706d35c803b68b0f95b  mbs1/x86_64/udisks-1.0.4-7.1.mbs1.x86_64.rpm
 5139fe402d636edb486c9a02082acfd8  mbs1/x86_64/udisks-devel-1.0.4-7.1.mbs1.x86_64.rpm 
 bfd3cb6833dd91223e3dc8def514da07  mbs1/SRPMS/udisks-1.0.4-7.1.mbs1.src.rpm

References