4 matches found
CVE-2016-5011
CVE-2016-5011 affects the libblkid component of util-linux (partitions/dos.c). The root cause is a vulnerability in parse_dos_extended that allows a crafted MSDOS partition table with an extended partition boot record at offset zero to cause memory consumption leading to a denial of service. The ...
CVE-2016-2779
CVE-2016-2779 affects util-linux, where runuser -u program can be hijacked via crafted TIOCSTI ioctl to push input to the terminal buffer, enabling local privilege escalation by hijacking the tty. Root cause: TIOCSTI-based input injection. Impact: local privilege escalation. Exploitation status/...
CVE-2014-9114
CVE-2014-9114 affects util-linux Blkid; BlkId in util-linux before 2.26rc-1 allows local users to execute arbitrary code. Affected component is the blkid functionality in util-linux. The provided documents do not specify mitigations or patch versions beyond the vulnerable range; no explicit explo...
CVE-2015-5224
CVE-2015-5224 affects util-linux's login-utils mkostemp usage, enabling remote attackers to cause file name collisions and potentially other attacks. Affected component is login-utils in util-linux; root cause is incorrect usage of mkostemp. CVSS indicates high/critical impact vectors (network at...