7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
9.3%
The encode_name macro in misc/mntent_r.c in the GNU C Library (aka glibc or libc6) 2.11.1 and earlier, as used by ncpmount and mount.cifs, does not properly handle newline characters in mountpoint names, which allows local users to cause a denial of service (mtab corruption), or possibly modify mount options and gain privileges, via a crafted mount request.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | glibc | < 2.11-1 | glibc_2.11-1_all.deb |
Debian | 11 | all | glibc | < 2.11-1 | glibc_2.11-1_all.deb |
Debian | 10 | all | glibc | < 2.11-1 | glibc_2.11-1_all.deb |
Debian | 999 | all | glibc | < 2.11-1 | glibc_2.11-1_all.deb |
Debian | 13 | all | glibc | < 2.11-1 | glibc_2.11-1_all.deb |