RedHatRHSA-2007:0969(RHSA-2007:0969) Moderate: util-linux security update
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
29.3%
The util-linux package contains a large variety of low-level system
utilities that are necessary for a Linux system to function.
A flaw was discovered in the way that the mount and umount utilities
used the setuid and setgid functions, which could lead to privileges being
dropped improperly. A local user could use this flaw to run mount helper
applications such as, mount.nfs, with additional privileges (CVE-2007-5191).
Users are advised to update to these erratum packages which contain a
backported patch to correct this issue.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | any | ia64 | mount | < 2.11y-31.24 | mount-2.11y-31.24.ia64.rpm |
| RedHat | any | i386 | losetup | < 2.11y-31.24 | losetup-2.11y-31.24.i386.rpm |
| RedHat | any | ppc | mount | < 2.11y-31.24 | mount-2.11y-31.24.ppc.rpm |
| RedHat | any | x86_64 | mount | < 2.11y-31.24 | mount-2.11y-31.24.x86_64.rpm |
| RedHat | 5 | s390x | util-linux | < 2.13-0.45.el5_1.1 | util-linux-2.13-0.45.el5_1.1.s390x.rpm |
| RedHat | 4 | s390x | util-linux | < 2.12a-17.el4_6.1 | util-linux-2.12a-17.el4_6.1.s390x.rpm |
| RedHat | any | s390x | mount | < 2.11y-31.24 | mount-2.11y-31.24.s390x.rpm |
| RedHat | 4 | ia64 | util-linux | < 2.12a-17.el4_6.1 | util-linux-2.12a-17.el4_6.1.ia64.rpm |
| RedHat | 5 | ppc | util-linux | < 2.13-0.45.el5_1.1 | util-linux-2.13-0.45.el5_1.1.ppc.rpm |
| RedHat | any | ia64 | util-linux | < 2.11y-31.24 | util-linux-2.11y-31.24.ia64.rpm |
Related
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
29.3%