Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cloudfoundryCloud FoundryCFOUNDRY:60825E2B1712264C1B4AE046084A8F29
HistoryMay 23, 2024 - 12:00 a.m.

USN-6719-2: util-linux vulnerability | Cloud Foundry

2024-05-2300:00:00
Cloud Foundry
www.cloudfoundry.org
4
canonical ubuntu
vulnerability
cloud foundry
upgrade
cve-2024-28085
mitigation

6.9 Medium

AI Score

Confidence

Low

0.0005 Low

EPSS

Percentile

17.1%

JSON

Severity

Medium

Vendor

Canonical Ubuntu

Versions Affected

  • Canonical Ubuntu 22.04

Description

USN-6719-1 fixed a vulnerability in util-linux. Unfortunately, it was discovered that the fix did not fully address the issue. This update removes the setgid permission bit from the wall and write utilities. Original advisory details: Skyler Ferrante discovered that the util-linux wall command did not filter escape sequences from command line arguments. A local attacker could possibly use this issue to obtain sensitive information. Update Instructions: Run sudo pro fix USN-6719-2 to fix the vulnerability. The problem can be corrected by updating your system to the following package versions: bsdutils – 1:2.34-0.1ubuntu9.6 No subscription required fdisk – 2.34-0.1ubuntu9.6 libblkid-dev – 2.34-0.1ubuntu9.6 libblkid1 – 2.34-0.1ubuntu9.6 libfdisk-dev – 2.34-0.1ubuntu9.6 libfdisk1 – 2.34-0.1ubuntu9.6 libmount-dev – 2.34-0.1ubuntu9.6 libmount1 – 2.34-0.1ubuntu9.6 libsmartcols-dev – 2.34-0.1ubuntu9.6 libsmartcols1 – 2.34-0.1ubuntu9.6 libuuid1 – 2.34-0.1ubuntu9.6 mount – 2.34-0.1ubuntu9.6 rfkill – 2.34-0.1ubuntu9.6 util-linux – 2.34-0.1ubuntu9.6 util-linux-locales – 2.34-0.1ubuntu9.6 uuid-dev – 2.34-0.1ubuntu9.6 uuid-runtime – 2.34-0.1ubuntu9.6 No subscription required

CVEs contained in this USN include: CVE-2024-28085.

Affected Cloud Foundry Products and Versions

Severity is medium unless otherwise noted.

  • cflinuxfs4
    • All versions prior to 1.89.0
  • Jammy Stemcells
    • 1.x versions prior to 1.439
    • All other stemcells not listed.
  • CF Deployment
    • All versions with Jammy Stemcells prior to 1.439

Mitigation

Users of affected products are strongly encouraged to follow the mitigations below.

The Cloud Foundry project recommends upgrading the following releases:

  • cflinuxfs4
    • Upgrade all versions to 1.89.0 or greater
  • Jammy Stemcells
    • Upgrade 1.x versions to 1.439 or greater
    • All other stemcells should be upgraded to the latest version available on bosh.io.
  • CF Deployment
    • For all versions, upgrade Jammy Stemcells to 1.439 or greater

References

History

2024-05-23: Initial vulnerability report published.

Affected configurations

Vulners
Node
cloud_foundrydiegoRange<1.89.0
OR
cloud_foundrydiegoRange<1.439
OR
cloud_foundrycf-networkingRange<1.439

Related

openvas 15
mageia 1
osv 5
nessus 14
packetstorm 1
veracode 1
cbl_mariner 1
redhatcve 1
nvd 1
alpinelinux 1
f5 1
redos 2
ubuntu 2
cvelist 1
ubuntucve 1
githubexploit 1
debian 2
slackware 1
debiancve 1
cve 1
thn 1
photon 3
openvas
openvas
Ubuntu: Security Advisory (USN-6719-2)
2024-04-11 00:00:00
Slackware: Security Advisory (SSA:2024-088-02)
2024-03-29 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:1171-1)
2024-05-07 00:00:00
mageia
mageia
Updated util-linux packages fix security vulnerability
2024-04-06 22:53:46
osv
osv
util-linux vulnerability
2024-04-10 12:24:42
util-linux vulnerability
2024-03-27 15:23:13
util-linux - security update
2024-03-31 00:00:00
nessus
nessus
SUSE SLES15 Security Update : util-linux (SUSE-SU-2024:1106-1)
2024-04-08 00:00:00
Ubuntu 20.04 LTS / 22.04 LTS / 23.10 : util-linux vulnerability (USN-6719-1)
2024-03-27 00:00:00
SUSE SLES15 Security Update : util-linux (SUSE-SU-2024:1170-1)
2024-04-10 00:00:00
packetstorm
packetstorm
util-linux wall Escape Sequence Injection
2024-03-28 00:00:00
veracode
veracode
Escape Sequence Injection
2024-04-08 12:41:53
cbl_mariner
cbl_mariner
CVE-2024-28085 affecting package util-linux for versions less than 2.37.4-9
2024-04-19 23:01:58
redhatcve
redhatcve
CVE-2024-28085
2024-03-27 19:52:40
nvd
nvd
CVE-2024-28085
2024-03-27 19:15:48
alpinelinux
alpinelinux
CVE-2024-28085
2024-03-27 19:15:48
f5
f5
K000139140 : util-linux vulnerability CVE-2024-28085
2024-04-01 00:00:00
redos
redos
ROS-20240425-06
2024-04-25 00:00:00
ROS-20240425-07
2024-04-25 00:00:00
ubuntu
ubuntu
util-linux vulnerability
2024-03-27 00:00:00
util-linux vulnerability
2024-04-10 00:00:00
cvelist
cvelist
CVE-2024-28085
2024-03-27 00:00:00
ubuntucve
ubuntucve
CVE-2024-28085
2024-03-27 00:00:00
githubexploit
githubexploit
Exploit for CVE-2024-28085
2024-03-11 00:15:03
debian
debian
[SECURITY] [DSA 5650-1] util-linux security update
2024-03-31 11:50:05
[SECURITY] [DLA 3782-1] util-linux security update
2024-04-07 10:40:44
slackware
slackware
[slackware-security] util-linux
2024-03-28 21:56:23
debiancve
debiancve
CVE-2024-28085
2024-03-27 19:15:48
cve
cve
CVE-2024-28085
2024-03-27 19:15:48
thn
thn
New Linux Bug Could Lead to User Password Leaks and Clipboard Hijacking
2024-03-29 10:49:00
photon
photon
Important Photon OS Security Update - PHSA-2024-5.0-0242
2024-04-10 00:00:00
Important Photon OS Security Update - PHSA-2024-3.0-0747
2024-04-08 00:00:00
Important Photon OS Security Update - PHSA-2024-4.0-0591
2024-04-11 00:00:00

6.9 Medium

AI Score

Confidence

Low

0.0005 Low

EPSS

Percentile

17.1%

JSON
Related for CFOUNDRY:60825E2B1712264C1B4AE046084A8F29
openvas15mageia1osv5nessus14packetstorm1veracode1cbl_mariner1redhatcve1nvd1alpinelinux1f51redos2ubuntu2cvelist1ubuntucve1githubexploit1debian2slackware1debiancve1cve1thn1photon3