Lucene search
UbuntuUSN-6719-2HistoryApr 10, 2024 - 12:00 a.m.
util-linux vulnerability
2024-04-1000:00:00
ubuntu.com
9
ubuntu
util-linux
vulnerability
fix
command line
permissions
security
Releases
- Ubuntu 23.10
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS
Packages
- util-linux - miscellaneous system utilities
Details
USN-6719-1 fixed a vulnerability in util-linux. Unfortunately, it was
discovered that the fix did not fully address the issue. This update
removes the setgid permission bit from the wall and write utilities.
Original advisory details:
Skyler Ferrante discovered that the util-linux wall command did not filter
escape sequences from command line arguments. A local attacker could
possibly use this issue to obtain sensitive information.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 23.10 | noarch | util-linux | < 2.39.1-4ubuntu2.2 | UNKNOWN |
| Ubuntu | 23.10 | noarch | bsdextrautils | < 2.39.1-4ubuntu2.2 | UNKNOWN |
| Ubuntu | 23.10 | noarch | bsdextrautils-dbgsym | < 2.39.1-4ubuntu2.2 | UNKNOWN |
| Ubuntu | 23.10 | noarch | bsdutils | < 1:2.39.1-4ubuntu2.2 | UNKNOWN |
| Ubuntu | 23.10 | noarch | bsdutils-dbgsym | < 1:2.39.1-4ubuntu2.2 | UNKNOWN |
| Ubuntu | 23.10 | noarch | eject | < 2.39.1-4ubuntu2.2 | UNKNOWN |
| Ubuntu | 23.10 | noarch | eject-dbgsym | < 2.39.1-4ubuntu2.2 | UNKNOWN |
| Ubuntu | 23.10 | noarch | fdisk | < 2.39.1-4ubuntu2.2 | UNKNOWN |
| Ubuntu | 23.10 | noarch | fdisk-dbgsym | < 2.39.1-4ubuntu2.2 | UNKNOWN |
| Ubuntu | 23.10 | noarch | libblkid-dev | < 2.39.1-4ubuntu2.2 | UNKNOWN |
References
Related
mageia
mageia
Updated util-linux packages fix security vulnerability
2024-04-06 22:53:46
openvas
openvas
Slackware: Security Advisory (SSA:2024-088-02)
2024-03-29 00:00:00
Ubuntu: Security Advisory (USN-6719-2)
2024-04-11 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:1171-1)
2024-05-07 00:00:00
osv
osv
util-linux vulnerability
2024-04-10 12:24:42
util-linux - security update
2024-03-31 00:00:00
util-linux vulnerability
2024-03-27 15:23:13
nessus
nessus
Ubuntu 20.04 LTS / 22.04 LTS / 23.10 : util-linux vulnerability (USN-6719-1)
2024-03-27 00:00:00
SUSE SLES15 Security Update : util-linux (SUSE-SU-2024:1106-1)
2024-04-08 00:00:00
Debian dsa-5650 : bsdextrautils - security update
2024-03-31 00:00:00
packetstorm
packetstorm
util-linux wall Escape Sequence Injection
2024-03-28 00:00:00
veracode
veracode
Escape Sequence Injection
2024-04-08 12:41:53
ubuntu
ubuntu
util-linux vulnerability
2024-03-27 00:00:00
redos
redos
ROS-20240425-06
2024-04-25 00:00:00
ROS-20240425-07
2024-04-25 00:00:00
cvelist
cvelist
CVE-2024-28085
2024-03-27 00:00:00
githubexploit
githubexploit
Exploit for CVE-2024-28085
2024-03-11 00:15:03
ubuntucve
ubuntucve
CVE-2024-28085
2024-03-27 00:00:00
debian
debian
[SECURITY] [DSA 5650-1] util-linux security update
2024-03-31 11:50:05
[SECURITY] [DLA 3782-1] util-linux security update
2024-04-07 10:41:20
f5
f5
K000139140 : util-linux vulnerability CVE-2024-28085
2024-04-01 00:00:00
alpinelinux
alpinelinux
CVE-2024-28085
2024-03-27 19:15:48
cbl_mariner
cbl_mariner
CVE-2024-28085 affecting package util-linux for versions less than 2.37.4-9
2024-04-19 23:01:58
redhatcve
redhatcve
CVE-2024-28085
2024-03-27 19:52:40
debiancve
debiancve
CVE-2024-28085
2024-03-27 19:15:48
slackware
slackware
[slackware-security] util-linux
2024-03-28 21:56:23
cve
cve
CVE-2024-28085
2024-03-27 19:15:48
thn
thn
New Linux Bug Could Lead to User Password Leaks and Clipboard Hijacking
2024-03-29 10:49:00