CVE-2016-2779

runuser in util-linux allows local users to escape to the parent session via a crafted TIOCSTI ioctl call, which pushes characters to the terminal's input buffer...

DEBIAN-CVE-2016-2779

runuser in util-linux allows local users to escape to the parent session via a crafted TIOCSTI ioctl call, which pushes characters to the terminal's input buffer...

CVE-2016-2779

CVE-2016-2779 affects util-linux, where runuser -u program can be hijacked via crafted TIOCSTI ioctl to push input to the terminal buffer, enabling local privilege escalation by hijacking the tty. Root cause: TIOCSTI-based input injection. Impact: local privilege escalation. Exploitation status/...

CVE-2016-2779

runuser in util-linux allows local users to escape to the parent session via a crafted TIOCSTI ioctl call, which pushes characters to the terminal's input buffer...

CVE-2016-2779

runuser in util-linux allows local users to escape to the parent session via a crafted TIOCSTI ioctl call, which pushes characters to the terminal's input buffer...

Scientific Linux Security Update : util-linux on SL7.x x86_64 (20161103)

Security Fixes : - It was found that util-linux's libblkid library did not properly handle Extended Boot Record EBR partitions when reading MS-DOS partition tables. An attacker with physical USB access to a protected machine could insert a storage device with a specially crafted partition table...

openSUSE Security Update : util-linux (openSUSE-2016-1446)

This update for util-linux fixes the following issues : - Consider redundant slashes when comparing paths bsc982331, util-linux-libmount-ignore-redundant-slashes.patch, affects backport of util-linux-libmount-cifs-ismounted.patch. - Use upstream compatibility patches for --show-pt-geometry with...

util-linux: Arbitrary code execution

Background util-linux is a suite of Linux programs including mount and umount, programs used to mount and unmount filesystems. Description A command injection flaw was discovered in util-linux’s “blkid” utility. It uses caching files /dev/.blkid.tab or /run/blkid/blkid.tab to store info about the...

GLSA-201612-14 : util-linux: Arbitrary code execution

The remote host is affected by the vulnerability described in GLSA-201612-14 util-linux: Arbitrary code execution A command injection flaw was discovered in util-linuxs blkid utility. It uses caching files /dev/.blkid.tab or /run/blkid/blkid.tab to store info about the UUID, LABEL etc. it finds o...

SUSE SLED12 / SLES12 Security Update : util-linux (SUSE-SU-2016:2954-1)

This update for util-linux fixes the following issues : - Consider redundant slashes when comparing paths bsc982331, util-linux-libmount-ignore-redundant-slashes.patch, affects backport of util-linux-libmount-cifs-ismounted.patch. - Use upstream compatibility patches for --show-pt-geometry with...

SUSE-SU-2016:2954-1 Security update for util-linux

This update for util-linux fixes the following issues: - Consider redundant slashes when comparing paths bsc982331, util-linux-libmount-ignore-redundant-slashes.patch, affects backport of util-linux-libmount-cifs-ismounted.patch. - Use upstream compatibility patches for --show-pt-geometry with...

CentOS 7 : util-linux (CESA-2016:2605)

An update for util-linux is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

openSUSE Security Update : util-linux (openSUSE-2016-1317)

This update for util-linux fixes a number of bugs and one minor security issue. The following minor vulnerability was fixed : - CVE-2016-5011: Infinite loop DoS in libblkid while parsing DOS partition bsc988361 The following bugs were fixed : - bsc987176: When mounting a subfolder of a CIFS share...

Oracle Linux 7 : util-linux (ELSA-2016-2605)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2016-2605 advisory. 2.23.2-33.0.1 - fix Oracle bug 23001516 - backport lscpu: correct the Virtualization type on Xen DomU PV guest - Reviewed-by: Joe Jin 2.23.2-33 - improve patch...

SUSE SLED12 / SLES12 Security Update : util-linux (SUSE-SU-2016:2764-1)

This update for util-linux fixes a number of bugs and one minor security issue. The following minor vulnerability was fixed : - CVE-2016-5011: Infinite loop DoS in libblkid while parsing DOS partition bsc988361 The following bugs were fixed : - bsc987176: When mounting a subfolder of a CIFS share...

SUSE-SU-2016:2764-1 Security update for util-linux

This update for util-linux fixes a number of bugs and one minor security issue. The following minor vulnerability was fixed: - CVE-2016-5011: Infinite loop DoS in libblkid while parsing DOS partition bsc988361 The following bugs were fixed: - bsc987176: When mounting a subfolder of a CIFS share,...

util-linux security, bug fix, and enhancement update

2.23.2-33.0.1 - fix Oracle bug 23001516 - backport lscpu: correct the Virtualization type on Xen DomU PV guest - Reviewed-by: Joe Jin 2.23.2-33 - improve patch for 1007734 libblkid realpaths 2.23.2-32 - improve patch for chrt1 deadline support 1298384 - fix 1007734 - blkid shows devices as...

RedHat Update for util-linux RHSA-2016:2605-02

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

RHEL 7 : util-linux (RHSA-2016:2605)

An update for util-linux is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

util-linux: Extended partition loop in MBR partition table leads to DOS

It was found that util-linux's libblkid library did not properly handle Extended Boot Record EBR partitions when reading MS-DOS partition tables. An attacker with physical USB access to a protected machine could insert a storage device with a specially crafted partition table that could, for...