Lucene search
Gentoo FoundationMGASA-2024-0112HistoryApr 06, 2024 - 10:53 p.m.
Updated util-linux packages fix security vulnerability
2024-04-0622:53:46
Gentoo Foundation
advisories.mageia.org
18
util-linux
security
vulnerability
packages
fix
escape sequences
terminals
account takeover
cve-2024-28085
unix
wall in util-linux through 2.40, often installed with setgid tty permissions, allows escape sequences to be sent to other users’ terminals through argv. (Specifically, escape sequences received from stdin are blocked, but escape sequences received from argv are not blocked.) There may be plausible scenarios where this leads to account takeover. (CVE-2024-28085)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 9 | noarch | util-linux | < 2.38.1-1.1 | util-linux-2.38.1-1.1.mga9 |
Related
nessus
nessus
Debian dsa-5650 : bsdextrautils - security update
2024-03-31 00:00:00
SUSE SLES15 Security Update : util-linux (SUSE-SU-2024:1170-1)
2024-04-10 00:00:00
SUSE SLED12 / SLES12 Security Update : util-linux (SUSE-SU-2024:1171-1)
2024-04-10 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-5650-1)
2024-04-01 00:00:00
openSUSE: Security Advisory for util (SUSE-SU-2024:1170-1)
2024-04-10 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:1171-1)
2024-05-07 00:00:00
veracode
veracode
Escape Sequence Injection
2024-04-08 12:41:53
osv
osv
util-linux vulnerability
2024-04-10 12:24:42
util-linux - security update
2024-03-31 00:00:00
util-linux vulnerability
2024-03-27 15:23:13
packetstorm
packetstorm
util-linux wall Escape Sequence Injection
2024-03-28 00:00:00
redos
redos
ROS-20240425-06
2024-04-25 00:00:00
ROS-20240425-07
2024-04-25 00:00:00
ubuntu
ubuntu
util-linux vulnerability
2024-03-27 00:00:00
util-linux vulnerability
2024-04-10 00:00:00
ubuntucve
ubuntucve
CVE-2024-28085
2024-03-27 00:00:00
cvelist
cvelist
CVE-2024-28085
2024-03-27 00:00:00
debian
debian
[SECURITY] [DSA 5650-1] util-linux security update
2024-03-31 11:50:05
[SECURITY] [DLA 3782-1] util-linux security update
2024-04-07 10:40:44
githubexploit
githubexploit
Exploit for CVE-2024-28085
2024-03-11 00:15:03
debiancve
debiancve
CVE-2024-28085
2024-03-27 19:15:48
slackware
slackware
[slackware-security] util-linux
2024-03-28 21:56:23
cve
cve
CVE-2024-28085
2024-03-27 19:15:48
redhatcve
redhatcve
CVE-2024-28085
2024-03-27 19:52:40
f5
f5
K000139140 : util-linux vulnerability CVE-2024-28085
2024-04-01 00:00:00
alpinelinux
alpinelinux
CVE-2024-28085
2024-03-27 19:15:48
cbl_mariner
cbl_mariner
CVE-2024-28085 affecting package util-linux for versions less than 2.37.4-9
2024-04-19 23:01:58
nvd
nvd
CVE-2024-28085
2024-03-27 19:15:48
cloudfoundry
cloudfoundry
USN-6719-2: util-linux vulnerability | Cloud Foundry
2024-05-23 00:00:00
thn
thn
New Linux Bug Could Lead to User Password Leaks and Clipboard Hijacking
2024-03-29 10:49:00
photon
photon
Important Photon OS Security Update - PHSA-2024-5.0-0242
2024-04-10 00:00:00
Important Photon OS Security Update - PHSA-2024-3.0-0747
2024-04-08 00:00:00
Important Photon OS Security Update - PHSA-2024-4.0-0591
2024-04-11 00:00:00
hp
hp
HP ThinPro 8.0 SP 9 Security Updates
2024-06-17 00:00:00