Lucene search
K

4 matches found

CVE
CVE
added 2017/04/11 3:0 p.m.379 views

CVE-2016-5011

CVE-2016-5011 affects the libblkid component of util-linux (partitions/dos.c). The root cause is a vulnerability in parse_dos_extended that allows a crafted MSDOS partition table with an extended partition boot record at offset zero to cause memory consumption leading to a denial of service. The ...

4.9CVSS4.5AI score0.00464EPSS
CVE
CVE
added 2017/02/07 3:0 p.m.130 views

CVE-2016-2779

CVE-2016-2779 affects util-linux, where runuser -u program can be hijacked via crafted TIOCSTI ioctl to push input to the terminal buffer, enabling local privilege escalation by hijacking the tty. Root cause: TIOCSTI-based input injection. Impact: local privilege escalation. Exploitation status/...

7.8CVSS7.2AI score0.00386EPSS
CVE
CVE
added 2017/03/31 3:0 p.m.85 views

CVE-2014-9114

CVE-2014-9114 affects util-linux Blkid; BlkId in util-linux before 2.26rc-1 allows local users to execute arbitrary code. Affected component is the blkid functionality in util-linux. The provided documents do not specify mitigations or patch versions beyond the vulnerable range; no explicit explo...

7.8CVSS7.5AI score0.00648EPSS
CVE
CVE
added 2017/08/23 3:0 p.m.77 views

CVE-2015-5224

CVE-2015-5224 affects util-linux's login-utils mkostemp usage, enabling remote attackers to cause file name collisions and potentially other attacks. Affected component is login-utils in util-linux; root cause is incorrect usage of mkostemp. CVSS indicates high/critical impact vectors (network at...

9.8CVSS9.3AI score0.04526EPSS