Lucene search
K

1184 matches found

Debian
Debian
added 2008/01/05 3:10 p.m.28 views

[SECURITY] [DSA 1450-1] New util-linux packages fix programming error

------------------------------------------------------------------------ Debian Security Advisory DSA-1450-1 [email protected] http://www.debian.org/security/ Steve Kemp January 05, 2008 http://www.debian.org/security/faq -...

7.2CVSS5.7AI score0.0044EPSS
Exploits0
OSV
OSV
added 2008/01/05 12:0 a.m.23 views

DSA-1450-1 util-linux privilege escalation

Bulletin has no description...

7.2CVSS5.9AI score0.0044EPSS
Exploits0
Oracle linux
Oracle linux
added 2007/11/16 12:0 a.m.23 views

Moderate: util-linux security update

2.11y-31.24 - fix 324431 - CVE-2007-5191 util-linux mount doesn't drop privileges properly when calling helpers...

6.9CVSS3.2AI score0.0044EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2007/11/16 12:0 a.m.32 views

RHEL 3 / 4 / 5 : util-linux (RHSA-2007:0969)

Updated util-linux packages that fix a security issue are now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The util-linux package contains a large variety of low-level system utilities that...

7.2CVSS5.3AI score0.0044EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2007/11/15 4:7 p.m.34 views

Moderate: Red Hat Security Advisory: util-linux security update

Updated util-linux packages that fix a security issue are now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The util-linux package contains a large variety of low-level system utilities that...

7.2CVSS5.7AI score0.0044EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2007/11/10 12:0 a.m.22 views

Ubuntu 6.06 LTS / 6.10 / 7.04 : util-linux vulnerability (USN-533-1)

Ludwig Nussel discovered that mount and umount did not properly drop privileges when using helper programs. Local attackers may be able to bypass security restrictions and gain root privileges using programs such as mount.nfs or mount.cifs. Note that Tenable Network Security has extracted the...

7.2CVSS5.4AI score0.0044EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2007/11/06 12:0 a.m.25 views

Fedora 7 : util-linux-2.13-0.54.1.fc7 (2007-2462)

Mon Oct 8 2007 Karel Zak 2.13-0.54.1 - fix 320131 - CVE-2007-5191 util-linux umount doesn't drop privileges properly when calling helpers F7 - Wed Aug 8 2007 Karel Zak 2.13-0.54 - backport mount relatime patch - Thu Aug 2 2007 Karel Zak 2.13-0.53 - fix 236848 - mount/fstab.c:lockmtab should open...

7.2CVSS5.4AI score0.0044EPSS
Exploits0References3
Ubuntu
Ubuntu
added 2007/10/22 6:1 p.m.66 views

USN-533-1: util-linux vulnerability

Ludwig Nussel discovered that mount and umount did not properly drop privileges when using helper programs. Local attackers may be able to bypass security restrictions and gain root privileges using programs such as mount.nfs or mount.cifs...

7.2CVSS5.3AI score0.0044EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2007/10/19 12:0 a.m.31 views

GLSA-200710-18 : util-linux: Local privilege escalation

The remote host is affected by the vulnerability described in GLSA-200710-18 util-linux: Local privilege escalation Ludwig Nussel discovered that the checkspecialmountprog and checkspecialumountprog functions call setuid and setgid in the wrong order and do not check the return values, which can...

7.2CVSS5.7AI score0.0044EPSS
Exploits0References2
Gentoo Linux
Gentoo Linux
added 2007/10/18 12:0 a.m.49 views

util-linux: Local privilege escalation

Background util-linux is a suite of Linux programs including mount and umount, programs used to mount and unmount filesystems. Description Ludwig Nussel discovered that the checkspecialmountprog and checkspecialumountprog functions call setuid and setgid in the wrong order and do not check the...

7.2CVSS6.5AI score0.0044EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2007/10/18 12:0 a.m.30 views

openSUSE 10 Security Update : util-linux (util-linux-4552)

Insufficient length checks when reading the passphrase for encrypted paritions in the mount program could cause a buffer overflow that could potentially be exploited to gain root privileges. When executing helper program 'mount' didn't check the return value of setuid. Therefore helper program...

7.2CVSS5.7AI score0.0044EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2007/10/17 12:0 a.m.20 views

Mandrake Linux Security Advisory : util-linux (MDKSA-2007:198)

The mount and umount programs in util-linux called the setuid and setgid functions in the wrong order and did not check the return values, which could allow attackers to grain privileges via helper applications such as mount.nfs. Updated packages have been patched to fix this issue. %NASLMINLEVEL...

7.2CVSS5.3AI score0.0044EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2007/10/16 12:0 a.m.24 views

Fedora Core 6 : util-linux-2.13-0.49.fc6 (2007-722)

Mon Oct 8 2007 Karel Zak 2.13-0.49 - fix 320141 - CVE-2007-5191 util-linux umount doesn't drop privileges properly when calling helpers FC6 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...

7.2CVSS5.3AI score0.0044EPSS
Exploits0References1
Fedora
Fedora
added 2007/10/15 7:59 p.m.29 views

[SECURITY] Fedora Core 6 Update: util-linux-2.13-0.49.fc6

The util-linux package contains a large variety of low-level system utilities that are necessary for a Linux system to function. Among others, Util-linux contains the fdisk configuration tool and the login program...

7.2CVSS3.9AI score0.0044EPSS
Exploits0
Fedora
Fedora
added 2007/10/10 7:33 p.m.28 views

[SECURITY] Fedora 7 Update: util-linux-2.13-0.54.1.fc7

The util-linux package contains a large variety of low-level system utilities that are necessary for a Linux system to function. Among others, Util-linux contains the fdisk configuration tool and the login program...

7.2CVSS3.9AI score0.0044EPSS
Exploits0
securityvulns
securityvulns
added 2007/10/10 12:0 a.m.106 views

rPSA-2007-0212-1 util-linux

rPath Security Advisory: 2007-0212-1 Published: 2007-10-08 Products: rPath Linux 1 Rating: Major Exposure Level Classification: Local Root Deterministic Privilege Escalation Updated Versions: util-linux=/conary.rpath.com@rpl:devel//1/2.12r-1.5-1 rPath Issue Tracking System:...

6.9CVSS6.2AI score0.0044EPSS
Exploits0
OSV
OSV
added 2007/10/07 12:0 a.m.5 views

DTSA-64-1 util-linux - privilege escalation in mount / umount

Bulletin has no description...

7.2CVSS6.2AI score0.0044EPSS
Exploits0
Debian CVE
Debian CVE
added 2007/10/04 4:0 p.m.28 views

CVE-2007-5191

mount and umount in util-linux and loop-aes-utils call the setuid and setgid functions in the wrong order and do not check the return values, which might allow attackers to gain privileges via helpers such as mount.nfs...

7.2CVSS5.5AI score0.0044EPSS
Exploits0
CVE
CVE
added 2007/10/04 4:0 p.m.108 views

CVE-2007-5191

The CVE-2007-5191 issue concerns util-linux: the mount and umount utilities call setuid/setgid in the wrong order and do not check return values, which could allow a local attacker to elevate privileges via helper programs (e.g., mount.nfs). Affected component: util-linux (mount/umount). Impact: ...

7.2CVSS6.2AI score0.0044EPSS
Exploits0References34Affected Software2
seebug.org
seebug.org
added 2007/06/10 12:0 a.m.21 views

Util-linux安全绕过漏洞

util-linux包含大量底层系统工具。 util-linux不正确验证用户权限,远程攻击者可以利用漏洞绕过安全限制,进行未授权访问。 问题存在于登录进程处理登录时不需要验证,部分参考自身验证的进程允许远程攻击者绕过访问策略,进行未授权访问。 util-linux util-linux 2.12 a + MandrakeSoft Linux Mandrake 10.2 x8664 + MandrakeSoft Linux Mandrake 10.2 x8664 + MandrakeSoft Linux Mandrake 10.2 + MandrakeSoft Linux Mandrak...

7AI score
Exploits0
Rows per page
Query Builder