835 matches found
Gentoo Security Advisory GLSA 200404-06 ()
The remote host is missing updates announced in advisory GLSA 200404-06. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200710-18 (util-linux)
The remote host is missing updates announced in advisory GLSA 200710-18. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200509-15 (util-linux)
The remote host is missing updates announced in advisory GLSA 200509-15. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Debian: Security Advisory (DSA-823-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DSA-1450-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian Security Advisory DSA 823-1 (util-linux)
The remote host is missing an update to util-linux announced via advisory DSA 823-1. David Watson discoverd a bug in mount as provided by util-linux and other packages such as loop-aes-utils that allows local users to bypass filesystem access restrictions by re-mounting it read-only. For the old...
Debian Security Advisory DSA 1450-1 (util-linux)
The remote host is missing an update to util-linux announced via advisory DSA 1450-1. OpenVAS Vulnerability Test $Id: deb14501.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1450-1 util-linux Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
Debian DSA-1450-1 : util-linux - programming error
It was discovered that util-linux, miscellaneous system utilities, didn't drop privileged user and group permissions in the correct order in the mount and umount commands. This could potentially allow a local user to gain additional privileges. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...
loop-aes-utils / util-linux privilege escalation
Group privileges are not properly dropped...
[SECURITY] [DSA 1450-1] New util-linux packages fix programming error
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1450-1 [email protected] http://www.debian.org/security/ Steve Kemp January 05, 2008 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1450-1] New util-linux packages fix programming error
------------------------------------------------------------------------ Debian Security Advisory DSA-1450-1 [email protected] http://www.debian.org/security/ Steve Kemp January 05, 2008 http://www.debian.org/security/faq -...
DSA-1450-1 util-linux privilege escalation
Bulletin has no description...
Moderate: util-linux security update
2.11y-31.24 - fix 324431 - CVE-2007-5191 util-linux mount doesn't drop privileges properly when calling helpers...
RHEL 3 / 4 / 5 : util-linux (RHSA-2007:0969)
Updated util-linux packages that fix a security issue are now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The util-linux package contains a large variety of low-level system utilities that...
Moderate: Red Hat Security Advisory: util-linux security update
Updated util-linux packages that fix a security issue are now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The util-linux package contains a large variety of low-level system utilities that...
Ubuntu 6.06 LTS / 6.10 / 7.04 : util-linux vulnerability (USN-533-1)
Ludwig Nussel discovered that mount and umount did not properly drop privileges when using helper programs. Local attackers may be able to bypass security restrictions and gain root privileges using programs such as mount.nfs or mount.cifs. Note that Tenable Network Security has extracted the...
Fedora 7 : util-linux-2.13-0.54.1.fc7 (2007-2462)
Mon Oct 8 2007 Karel Zak 2.13-0.54.1 - fix 320131 - CVE-2007-5191 util-linux umount doesn't drop privileges properly when calling helpers F7 - Wed Aug 8 2007 Karel Zak 2.13-0.54 - backport mount relatime patch - Thu Aug 2 2007 Karel Zak 2.13-0.53 - fix 236848 - mount/fstab.c:lockmtab should open...
USN-533-1: util-linux vulnerability
Ludwig Nussel discovered that mount and umount did not properly drop privileges when using helper programs. Local attackers may be able to bypass security restrictions and gain root privileges using programs such as mount.nfs or mount.cifs...
GLSA-200710-18 : util-linux: Local privilege escalation
The remote host is affected by the vulnerability described in GLSA-200710-18 util-linux: Local privilege escalation Ludwig Nussel discovered that the checkspecialmountprog and checkspecialumountprog functions call setuid and setgid in the wrong order and do not check the return values, which can...
openSUSE 10 Security Update : util-linux (util-linux-4552)
Insufficient length checks when reading the passphrase for encrypted paritions in the mount program could cause a buffer overflow that could potentially be exploited to gain root privileges. When executing helper program 'mount' didn't check the return value of setuid. Therefore helper program...