Lucene search
K

8 matches found

OSV
OSV
added 2022/09/07 12:31 p.m.4 views

SUSE-SU-2022:3154-1 Security update for udisks2

This update for udisks2 fixes the following issues: - CVE-2021-3802: Fixed insecure defaults in user-accessible mount helpers bsc1190606. - Fixed vulnerability that allowed mounting ext4 devices over existing entries in fstab bsc1098797...

6.3CVSS4.2AI score0.00808EPSS
Exploits1References4
OSV
OSV
added 2022/05/10 8:2 a.m.22 views

RLSA-2022:1820 Low: udisks2 security and bug fix update

The Udisks project provides a daemon, tools, and libraries to access and manipulate disks, storage devices, and technologies. Security Fixes: udisks2: insecure defaults in user-accessible mount helpers allow for a DoS CVE-2021-3802 For more details about the security issues, including the impact,...

4.5CVSS4.6AI score0.00808EPSS
Exploits1References5
Veracode
Veracode
added 2021/10/28 3:17 a.m.20 views

Denial Of Service (DoS)

udisks2 is vulnerable to denial of service. The vulnerability exists because some user-accessible mount helpers use insecure defaults which allows an attacker to send a crafted image causing an application crash...

4.2CVSS4.6AI score0.00808EPSS
Exploits1References4Affected Software1
Veracode
Veracode
added 2020/04/10 12:55 a.m.36 views

Privilege Escalation

glibc is vulnerable to privilege escalation. It was discovered that the glibc addmntent function did not sanitize its input properly. A local attacker could possibly use this flaw to inject malformed lines into /etc/mtab via certain setuid mount helpers, if the attacker were allowed to mount to a...

7.2CVSS6AI score0.00592EPSS
Exploits1References25Affected Software1
OpenVAS
OpenVAS
added 2010/05/28 12:0 a.m.40 views

Ubuntu Update for glibc, eglibc vulnerabilities USN-944-1

Ubuntu Update for Linux kernel vulnerabilities USN-944-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN9441.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for glibc, eglibc vulnerabilities USN-944-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH,...

7.5CVSS0.6AI score0.18795EPSS
Exploits3References2
RedHat Linux
RedHat Linux
added 2007/11/15 4:7 p.m.4 views

util-linux (u)mount doesn't drop privileges properly when calling helpers

mount and umount in util-linux and loop-aes-utils call the setuid and setgid functions in the wrong order and do not check the return values, which might allow attackers to gain privileges via helpers such as mount.nfs...

7.2CVSS5.8AI score0.0044EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2007/10/19 12:0 a.m.31 views

GLSA-200710-18 : util-linux: Local privilege escalation

The remote host is affected by the vulnerability described in GLSA-200710-18 util-linux: Local privilege escalation Ludwig Nussel discovered that the checkspecialmountprog and checkspecialumountprog functions call setuid and setgid in the wrong order and do not check the return values, which can...

7.2CVSS5.7AI score0.0044EPSS
Exploits0References2
Gentoo Linux
Gentoo Linux
added 2007/10/18 12:0 a.m.50 views

util-linux: Local privilege escalation

Background util-linux is a suite of Linux programs including mount and umount, programs used to mount and unmount filesystems. Description Ludwig Nussel discovered that the checkspecialmountprog and checkspecialumountprog functions call setuid and setgid in the wrong order and do not check the...

7.2CVSS6.5AI score0.0044EPSS
Exploits0
Rows per page
Query Builder