22 matches found
EulerOS Virtualization 2.13.1 : util-linux (EulerOS-SA-2026-2391)
According to the versions of the util-linux packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : util-linux is a random collection of Linux utilities. Prior to version 2.41.4, a TOCTOU Time-of-Check- Time-of-Use vulnerabilit...
EulerOS 2.0 SP13 : util-linux (EulerOS-SA-2026-2317)
According to the versions of the util-linux packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : util-linux is a random collection of Linux utilities. Prior to version 2.41.4, a TOCTOU Time-of-Check- Time-of-Use vulnerability has been...
EulerOS 2.0 SP11 : util-linux (EulerOS-SA-2026-2231)
According to the versions of the util-linux packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in util-linux. Improper hostname canonicalization in the login1 utility, when invoked with the -h option, can modify the...
EulerOS Virtualization 2.12.1 : util-linux (EulerOS-SA-2026-2090)
According to the versions of the util-linux packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A vulnerability exists in util-linux package that allows access control bypass due to improper hostname...
EulerOS Virtualization 2.10.0 : util-linux (EulerOS-SA-2026-2065)
According to the versions of the util-linux packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A flaw was found in util-linux. Improper hostname canonicalization in the login1 utility, when invoked with the -h option, can...
EulerOS Virtualization 2.12.0 : util-linux (EulerOS-SA-2026-2115)
According to the versions of the util-linux packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A vulnerability exists in util-linux package that allows access control bypass due to improper hostname...
SUSE-SU-2026:21016-1 Security update for util-linux
This update for util-linux fixes the following issues: Security issues: - CVE-2025-14104: heap buffer overread in setpwnam when processing 256-byte usernames bsc1254666. - CVE-2026-3184: access control bypass due to improper hostname canonicalization in login bsc1258859. Non security issues: -...
Util-linux: util-linux: access control bypass due to improper hostname canonicalization
...
EUVD-2026-18817
A flaw was found in util-linux. Improper hostname canonicalization in the login1 utility, when invoked with the -h option, can modify the supplied remote hostname before setting PAMRHOST. A remote attacker could exploit this by providing a specially crafted hostname, potentially bypassing...
CVE-2026-3184
A flaw was found in util-linux. Improper hostname canonicalization in the login1 utility, when invoked with the -h option, can modify the supplied remote hostname before setting PAMRHOST. A remote attacker could exploit this by providing a specially crafted hostname, potentially bypassing...
CVE-2026-3184
A flaw was found in util-linux. Improper hostname canonicalization in the login1 utility, when invoked with the -h option, can modify the supplied remote hostname before setting PAMRHOST. A remote attacker could exploit this by providing a specially crafted hostname, potentially bypassing...
CVE-2026-3184 Util-linux: util-linux: access control bypass due to improper hostname canonicalization
A flaw was found in util-linux. Improper hostname canonicalization in the login1 utility, when invoked with the -h option, can modify the supplied remote hostname before setting PAMRHOST. A remote attacker could exploit this by providing a specially crafted hostname, potentially bypassing...
CVE-2026-3184
A flaw was found in util-linux. Improper hostname canonicalization in the login1 utility, when invoked with the -h option, can modify the supplied remote hostname before setting PAMRHOST. A remote attacker could exploit this by providing a specially crafted hostname, potentially bypassing...
CVE-2026-3184
Affects util-linux, specifically the login(1) utility when invoked with -h. The root cause is improper hostname canonicalization, which can modify the supplied remote hostname before setting PAM_RHOST. This weakness can bypass host-based PAM access control rules that rely on fully qualified domai...
OESA-2026-1635 util-linux security update
The util-linux package contains a random collection of files that implements some low-level basic linux utilities. Security Fixes: A vulnerability exists in util-linux package that allows access control bypass due to improper hostname canonicalization.CVE-2026-3184...
SUSE-SU-2026:20664-1 Security update for util-linux
This update for util-linux fixes the following issue: - CVE-2026-3184: access control bypass due to improper hostname canonicalization in login bsc1258859...
SUSE-SU-2026:20714-1 Security update for util-linux
This update for util-linux fixes the following issue: - CVE-2026-3184: access control bypass due to improper hostname canonicalization in login bsc1258859...
OESA-2026-1535 util-linux security update
The util-linux package contains a random collection of files that implements some low-level basic linux utilities. Security Fixes: A vulnerability exists in util-linux package that allows access control bypass due to improper hostname canonicalization.CVE-2026-3184...
OESA-2026-1534 util-linux security update
The util-linux package contains a random collection of files that implements some low-level basic linux utilities. Security Fixes: A vulnerability exists in util-linux package that allows access control bypass due to improper hostname canonicalization.CVE-2026-3184...
OESA-2026-1532 util-linux security update
The util-linux package contains a random collection of files that implements some low-level basic linux utilities. Security Fixes: A vulnerability exists in util-linux package that allows access control bypass due to improper hostname canonicalization.CVE-2026-3184...