Unknown
Canonical Ubuntu
Skyler Ferrante discovered that the util-linux wall command did not filter escape sequences from command line arguments. A local attacker could possibly use this issue to obtain sensitive information. Update Instructions: Run sudo pro fix USN-6719-1
to fix the vulnerability. The problem can be corrected by updating your system to the following package versions: bsdutils – 1:2.34-0.1ubuntu9.5 No subscription required fdisk – 2.34-0.1ubuntu9.5 libblkid-dev – 2.34-0.1ubuntu9.5 libblkid1 – 2.34-0.1ubuntu9.5 libfdisk-dev – 2.34-0.1ubuntu9.5 libfdisk1 – 2.34-0.1ubuntu9.5 libmount-dev – 2.34-0.1ubuntu9.5 libmount1 – 2.34-0.1ubuntu9.5 libsmartcols-dev – 2.34-0.1ubuntu9.5 libsmartcols1 – 2.34-0.1ubuntu9.5 libuuid1 – 2.34-0.1ubuntu9.5 mount – 2.34-0.1ubuntu9.5 rfkill – 2.34-0.1ubuntu9.5 util-linux – 2.34-0.1ubuntu9.5 util-linux-locales – 2.34-0.1ubuntu9.5 uuid-dev – 2.34-0.1ubuntu9.5 uuid-runtime – 2.34-0.1ubuntu9.5 No subscription required
Severity is unknown unless otherwise noted.
Users of affected products are strongly encouraged to follow the mitigations below.
The Cloud Foundry project recommends upgrading the following releases:
2024-05-02: Initial vulnerability report published.
CPE | Name | Operator | Version |
---|---|---|---|
cflinuxfs4 | lt | 1.85.0 | |
jammy stemcells | lt | 1.423 | |
cf deployment | lt | 1.423 |