Lucene search
K

32 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 10:0 p.m.32 views

Security Bulletin: IBM QRadar Network Security is affected by a vulnerability in coreutils (util-linux)

Summary A security vulnerability has been discovered in coreutils util-linux, which is used by IBM QRadar Network Security. Vulnerability Details CVEID: CVE-2017-2616 DESCRIPTION: util-linux could allow a local authenticated attacker to bypass security restrictions, caused by a race condition whe...

5.5CVSS0.7AI score0.00279EPSS
Exploits0Affected Software1
Cvelist
Cvelist
added 2017/03/31 3:0 p.m.25 views

CVE-2014-9114

Blkid in util-linux before 2.26rc-1 allows local users to execute arbitrary code...

7.6AI score0.00648EPSS
Exploits0References11
OSV
OSV
added 2015/11/09 4:59 p.m.6 views

CVE-2015-5218

Buffer overflow in text-utils/colcrt.c in colcrt in util-linux before 2.27 allows local users to cause a denial of service crash via a crafted file, related to the page global variable...

8.6AI score
Exploits0References11
OSV
OSV
added 2011/04/10 2:55 a.m.11 views

CVE-2011-1677

mount in util-linux 2.19 and earlier does not remove the /etc/mtab lock file after a failed attempt to add a mount entry, which has unspecified impact and local attack vectors...

9AI score
Exploits0References35
OpenVAS
OpenVAS
added 2009/03/23 12:0 a.m.25 views

Ubuntu Update for util-linux vulnerability USN-533-1

Ubuntu Update for Linux kernel vulnerabilities USN-533-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN5331.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for util-linux vulnerability USN-533-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...

6.9CVSS0.1AI score0.0044EPSS
Exploits0References2
OSV
OSV
added 2008/05/05 12:0 a.m.4 views

DTSA-126-1 util-linux - log injection

Bulletin has no description...

7.5CVSS6.3AI score0.03866EPSS
Exploits1
Cvelist
Cvelist
added 2004/09/01 4:0 a.m.25 views

CVE-2004-0080

The login program in util-linux 2.11 and earlier uses a pointer after it has been freed and reallocated, which could cause login to leak sensitive data...

6.1AI score0.03332EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2004/07/31 12:0 a.m.30 views

Mandrake Linux Security Advisory : util-linux (MDKSA-2002:047)

Michal Zalewski found a vulnerability in the util-linux package with the chfn utility. This utility allows users to modify some information in the /etc/passwd file, and is installed setuid root. Using a carefully crafted attack sequence, an attacker can exploit a complex file locking and...

6.2CVSS5.5AI score0.00529EPSS
Exploits0References1
CERT
CERT
added 2004/03/23 12:0 a.m.33 views

util-linux login program discloses sensitive information

Overview util-linux login program uses a pointer that was previously freed and reallocated which could allow an attacker to gain access to sensitive information. Description util-linux is shipped with Red Hat and numerous other Linux distributions. It contains a collection of utility programs, su...

5CVSS6AI score0.03332EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2002/07/29 3:51 p.m.9 views

Moderate: Red Hat Security Advisory: util-linux security update

The util-linux package shipped with Red Hat Linux Advanced Server contains a locally exploitable vulnerability. The util-linux package contains a large variety of low-level system utilities that are necessary for a Linux system to function. The 'chfn' utility included in this package allows users...

6.2CVSS5.7AI score0.00529EPSS
Exploits0References3
Cvelist
Cvelist
added 2002/06/25 4:0 a.m.23 views

CVE-2001-1175

vipw in the util-linux package before 2.10 causes /etc/shadow to be world-readable in some cases, which would make it easier for local users to perform brute force password guessing...

6.5AI score0.00425EPSS
Exploits0References4
NVD
NVD
added 2001/12/31 5:0 a.m.19 views

CVE-2001-1494

script command in the util-linux package before 2.11n allows local users to overwrite arbitrary files by setting a hardlink from the typescript log file to any file on the system, then having root execute the script command...

5.5CVSS5.6AI score0.00433EPSS
Exploits0References9
Rows per page
Query Builder