ngompa/libblockdev-rpm
1
0
Fork 0
forked from rpms/libblockdev
Code Pull Requests Activity

import OL libblockdev-2.28-7.0.1.el8_10

Browse Source
This commit is contained in:
Andrew Lukoshko 2025-07-01 19:39:33 +00:00
parent 6dcb8bd912
commit e03146b602
2 changed files with 38 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

26
SOURCES/0006-Don-t-allow-suid-and-dev-set-on-fs-resize.patch Normal file
View File

@ -0,0 +1,26 @@
From 2508f4842482b87d26f81afecc7d0b584d6a6fa8 Mon Sep 17 00:00:00 2001
From: Thomas Blume <Thomas.Blume@suse.com>
Date: Fri, 16 May 2025 14:27:10 +0200
Subject: [PATCH] Don't allow suid and dev set on fs resize
Fixes: CVE-2025-6019
---
src/plugins/fs/generic.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/src/plugins/fs/generic.c b/src/plugins/fs/generic.c
index ca08d19a..15b55271 100644
--- a/src/plugins/fs/generic.c
+++ b/src/plugins/fs/generic.c
@@ -409,7 +409,7 @@ static gboolean xfs_resize_device (const gchar *device, guint64 new_size, const
"before resizing it.", device);
return FALSE;
}
- ret = bd_fs_mount (device, mountpoint, "xfs", NULL, NULL, error);
+ ret = bd_fs_mount (device, mountpoint, "xfs", "nosuid,nodev", NULL, error);
if (!ret) {
g_prefix_error (error, "Failed to mount '%s' before resizing it: ", device);
return FALSE;
--
2.49.0

16
SPECS/libblockdev.spec
View File

@ -53,8 +53,8 @@
%endif %endif
%endif %endif
# btrfs is not available on RHEL > 7 # disable BTRFS only if with_btrfs is 0
%if 0%{?rhel} > 7 || %{with_btrfs} == 0 %if %{with_btrfs} == 0
%define with_btrfs 0 %define with_btrfs 0
%define btrfs_copts --without-btrfs %define btrfs_copts --without-btrfs
%endif %endif
@ -125,7 +125,7 @@
Name: libblockdev Name: libblockdev
Version: 2.28 Version: 2.28
Release: 6%{?dist} Release: 7.0.1%{?dist}
Summary: A library for low-level manipulation with block devices Summary: A library for low-level manipulation with block devices
License: LGPLv2+ License: LGPLv2+
URL: https://github.com/storaged-project/libblockdev URL: https://github.com/storaged-project/libblockdev
@ -135,6 +135,7 @@ Patch1: 0002-tests-Fix-test_swapon_pagesize-on-systems-with-64k-p.patch
Patch2: 0003-part-Fix-segfault-when-adding-a-partition-too-big-fo.patch Patch2: 0003-part-Fix-segfault-when-adding-a-partition-too-big-fo.patch
Patch3: 0004-lvm-Add-a-function-to-activate-LVs-in-shared-mode.patch Patch3: 0004-lvm-Add-a-function-to-activate-LVs-in-shared-mode.patch
Patch4: 0005-lvm-Add-support-for-starting-and-stopping-VG-locking.patch Patch4: 0005-lvm-Add-support-for-starting-and-stopping-VG-locking.patch
Patch5: 0006-Don-t-allow-suid-and-dev-set-on-fs-resize.patch
BuildRequires: make BuildRequires: make
BuildRequires: glib2-devel BuildRequires: glib2-devel
@ -991,7 +992,14 @@ find %{buildroot} -type f -name "*.la" | xargs %{__rm}
%files plugins-all %files plugins-all
%changelog %changelog
* Wed Nov 08 2023 Vojtech Trefny <vtrefny@redhat.com> - 2.28-10 * Sun Jun 29 2025 EL Errata <el-errata_ww@oracle.com> - 2.28-7.0.1
- enable btrfs support [Orabug: 30792917]
* Mon Jun 16 2025 Vojtech Trefny <vtrefny@redhat.com> - 2.28-7
- Don't allow suid and dev set on fs resize (CVE-2025-6019)
Resolves: RHEL-96034
* Wed Nov 08 2023 Vojtech Trefny <vtrefny@redhat.com> - 2.28-6
- lvm: Add support for starting and stopping VG locking - lvm: Add support for starting and stopping VG locking
Resolves: RHEL-15923 Resolves: RHEL-15923