5 matches found
RedHat Security Advisory RHSA-2009:0981
The remote host is missing updates to util-linux announced in advisory RHSA-2009:0981. A log injection attack was found in util-linux when logging log in attempts via the audit subsystem of the Linux kernel. A remote attacker could use this flaw to modify certain parts of logged events, possibly...
Mandriva Linux Security Advisory : util-linux-ng (MDVSA-2008:114)
Argument injection vulnerability in login login-utils/login.c in util-linux-ng 2.14 and earlier makes it easier for remote attackers to hide activities by modifying portions of log events. The updated packages have been patched to fix the issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...
Fedora Update for util-linux-ng FEDORA-2008-3419
Check for the Version of util-linux-ng OpenVAS Vulnerability Test Fedora Update for util-linux-ng FEDORA-2008-3419 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...
CVE-2008-1926
Argument injection vulnerability in login login-utils/login.c in util-linux-ng 2.14 and earlier makes it easier for remote attackers to hide activities by modifying portions of log events, as demonstrated by appending an "addr=" statement to the login name, aka "audit log injection."...
CVE-2008-1926
Argument injection vulnerability in login login-utils/login.c in util-linux-ng 2.14 and earlier makes it easier for remote attackers to hide activities by modifying portions of log events, as demonstrated by appending an "addr=" statement to the login name, aka "audit log injection."...