Lucene search

K
mageiaGentoo FoundationMGASA-2018-0237
HistoryMay 16, 2018 - 11:24 a.m.

Updated util-linux packages fix security vulnerability

2018-05-1611:24:56
Gentoo Foundation
advisories.mageia.org
18

0.0004 Low

EPSS

Percentile

5.2%

A command injection flaw was found in the way util-linux implements umount autocompletion in Bash. An attacker with the ability to mount a filesystem with custom mount points may execute arbitrary commands on behalf of the user who triggers the umount autocompletion (CVE-2018-7738).

OSVersionArchitecturePackageVersionFilename
Mageia6noarchutil-linux< 2.28.2-2.1util-linux-2.28.2-2.1.mga6