Lucene search

K
cvelistRedhatCVELIST:CVE-2011-1089
HistoryApr 10, 2011 - 1:29 a.m.

CVE-2011-1089

2011-04-1001:29:00
redhat
www.cve.org
8

AI Score

8.3

Confidence

High

EPSS

0

Percentile

10.1%

The addmntent function in the GNU C Library (aka glibc or libc6) 2.13 and earlier does not report an error status for failed attempts to write to the /etc/mtab file, which makes it easier for local users to trigger corruption of this file, as demonstrated by writes from a process with a small RLIMIT_FSIZE value, a different vulnerability than CVE-2010-0296.

References