Lucene search
Ubuntu.comUB:CVE-2024-28085HistoryMar 27, 2024 - 12:00 a.m.
CVE-2024-28085
2024-03-2700:00:00
ubuntu.com
ubuntu.com
29
util-linux
setgid
escape sequences
argv
account takeover
wall in util-linux through 2.40, often installed with setgid tty
permissions, allows escape sequences to be sent to other users’ terminals
through argv. (Specifically, escape sequences received from stdin are
blocked, but escape sequences received from argv are not blocked.) There
may be plausible scenarios where this leads to account takeover.
Notes
| Author | Note |
|---|---|
| mdeslaur | USN-6719-1 added patches, but it turned out they were insufficient to completely fix the issue, so -2 was released which removes the setgid bit from the wall and write binaries. |
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 18.04 | noarch | util-linux | < any | UNKNOWN |
| ubuntu | 20.04 | noarch | util-linux | < 2.34-0.1ubuntu9.5 | UNKNOWN |
| ubuntu | 22.04 | noarch | util-linux | < 2.37.2-4ubuntu3.3 | UNKNOWN |
| ubuntu | 23.10 | noarch | util-linux | < 2.39.1-4ubuntu2.1 | UNKNOWN |
| ubuntu | 24.04 | noarch | util-linux | < 2.39.3-9ubuntu6 | UNKNOWN |
| ubuntu | 14.04 | noarch | util-linux | < any | UNKNOWN |
| ubuntu | 16.04 | noarch | util-linux | < any | UNKNOWN |
References
launchpad.net/bugs/cve/CVE-2024-28085
nvd.nist.gov/vuln/detail/CVE-2024-28085
people.rit.edu/sjf5462/6831711781/wall_2_27_2024.txt
security-tracker.debian.org/tracker/CVE-2024-28085
ubuntu.com/security/notices/USN-6719-1
ubuntu.com/security/notices/USN-6719-2
www.cve.org/CVERecord?id=CVE-2024-28085
www.openwall.com/lists/oss-security/2024/03/27/5
Related
nessus
nessus
Ubuntu 20.04 LTS / 22.04 LTS / 23.10 : util-linux vulnerability (USN-6719-1)
2024-03-27 00:00:00
SUSE SLES15 Security Update : util-linux (SUSE-SU-2024:1106-1)
2024-04-08 00:00:00
SUSE SLES15 Security Update : util-linux (SUSE-SU-2024:1170-1)
2024-04-10 00:00:00
osv
osv
util-linux vulnerability
2024-04-10 12:24:42
util-linux - security update
2024-03-31 00:00:00
util-linux vulnerability
2024-03-27 15:23:13
openvas
openvas
Slackware: Security Advisory (SSA:2024-088-02)
2024-03-29 00:00:00
Ubuntu: Security Advisory (USN-6719-2)
2024-04-11 00:00:00
openSUSE: Security Advisory for util (SUSE-SU-2024:1170-1)
2024-04-10 00:00:00
mageia
mageia
Updated util-linux packages fix security vulnerability
2024-04-06 22:53:46
packetstorm
packetstorm
util-linux wall Escape Sequence Injection
2024-03-28 00:00:00
veracode
veracode
Escape Sequence Injection
2024-04-08 12:41:53
debian
debian
[SECURITY] [DSA 5650-1] util-linux security update
2024-03-31 11:50:05
[SECURITY] [DLA 3782-1] util-linux security update
2024-04-07 10:41:20
githubexploit
githubexploit
Exploit for CVE-2024-28085
2024-03-11 00:15:03
ubuntu
ubuntu
util-linux vulnerability
2024-03-27 00:00:00
util-linux vulnerability
2024-04-10 00:00:00
cvelist
cvelist
CVE-2024-28085
2024-03-27 00:00:00
redos
redos
ROS-20240425-06
2024-04-25 00:00:00
ROS-20240425-07
2024-04-25 00:00:00
debiancve
debiancve
CVE-2024-28085
2024-03-27 19:15:48
slackware
slackware
[slackware-security] util-linux
2024-03-28 21:56:23
cve
cve
CVE-2024-28085
2024-03-27 19:15:48
f5
f5
K000139140 : util-linux vulnerability CVE-2024-28085
2024-04-01 00:00:00
redhatcve
redhatcve
CVE-2024-28085
2024-03-27 19:52:40
alpinelinux
alpinelinux
CVE-2024-28085
2024-03-27 19:15:48
cbl_mariner
cbl_mariner
CVE-2024-28085 affecting package util-linux for versions less than 2.37.4-9
2024-04-19 23:01:58
thn
thn
New Linux Bug Could Lead to User Password Leaks and Clipboard Hijacking
2024-03-29 10:49:00