suse · CVE-2015-0247

Quick triage

Priority: medium Published: 2021-05-30 13:25:50 UTC Updated: 2026-04-18 18:28:35 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2015-0247 severity moderate: SUSE including 506 source package names (0.1.0:libcom_err2-1.43.8-4.3.1, 0.1.75:libcom_err2-1.43.8-4.3.1, …), 837 product×package rows across 218 product lines (Container bci/bci-init, Container bci/dotnet-aspnet, … (218 product lines)): Fixed 629, Known Affected 157, Known Not Affected 51.

Description:

Heap-based buffer overflow in openfs.c in the libext2fs library in e2fsprogs before 1.42.12 allows local users to execute arbitrary code via crafted block group descriptor data in a filesystem image.

cvelogic Threat Intelligence