EUVD-2016-5970

Malware in sbrugna...

RHEL 6 : util-linux (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline...

Ubuntu 16.04 ESM : util-linux vulnerability (USN-5478-1)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-5478-1 advisory. Christian Moch and Michael Gruhn discovered that the libblkid library of util-linux did not properly manage memory under certain circumstances. A local attacker...

USN-5478-1: util-linux vulnerability

Christian Moch and Michael Gruhn discovered that the libblkid library of util-linux did not properly manage memory under certain circumstances. A local attacker could possibly use this issue to cause denial of service by consuming all memory through a specially crafted MSDOS partition table...

Denial Of Service (DoS)

libblkid.so is vulnerable to denial of service. The parsedosextended function in partitions/dos.c allows attackers to cause a denial of service condition through a crafted MSDOS partition table with an extended partition boot record at zero offset...

CVE-2016-5011

The parsedosextended function in partitions/dos.c in the libblkid library in util-linux allows physically proximate attackers to cause a denial of service memory consumption via a crafted MSDOS partition table with an extended partition boot record at zero offset...

CVE-2016-5011

The parsedosextended function in partitions/dos.c in the libblkid library in util-linux allows physically proximate attackers to cause a denial of service memory consumption via a crafted MSDOS partition table with an extended partition boot record at zero offset...

Design/Logic Flaw

The parsedosextended function in partitions/dos.c in the libblkid library in util-linux allows physically proximate attackers to cause a denial of service memory consumption via a crafted MSDOS partition table with an extended partition boot record at zero offset...

CVE-2016-5011

The parsedosextended function in partitions/dos.c in the libblkid library in util-linux allows physically proximate attackers to cause a denial of service memory consumption via a crafted MSDOS partition table with an extended partition boot record at zero offset...

CVE-2016-5011

The parsedosextended function in partitions/dos.c in the libblkid library in util-linux allows physically proximate attackers to cause a denial of service memory consumption via a crafted MSDOS partition table with an extended partition boot record at zero offset...

MGASA-2016-0256 Updated util-linux packages fix security vulnerability

The util-linux libblkid is vulnerable to a Denial of Service attack during MSDOS partition table parsing, in the extended partition boot record EBR. If the next EBR starts at relative offset 0, parsedosextended will loop until running out of memory. An attacker could install a specially crafted...