Linux » Util-linux : Security Vulnerabilities, CVEs,
mount in util-linux 2.19 and earlier does not remove the /etc/mtab~ lock file after a failed attempt to add a mount entry, which has unspecified impact and local attack vectors.
Max CVSS
4.6
EPSS Score
0.06%
Published
2011-04-10
Updated
2018-01-10
mount in util-linux 2.19 and earlier does not remove the /etc/mtab.tmp file after a failed attempt to add a mount entry, which allows local users to trigger corruption of the /etc/mtab file via multiple invocations.
Max CVSS
3.3
EPSS Score
0.04%
Published
2011-04-10
Updated
2017-08-17
mount in util-linux 2.19 and earlier attempts to append to the /etc/mtab.tmp file without first checking whether resource limits would interfere, which allows local users to trigger corruption of the /etc/mtab file via a process with a small RLIMIT_FSIZE value, a related issue to CVE-2011-1089.
Max CVSS
3.3
EPSS Score
0.04%
Published
2011-04-10
Updated
2018-01-10
Argument injection vulnerability in login (login-utils/login.c) in util-linux-ng 2.14 and earlier makes it easier for remote attackers to hide activities by modifying portions of log events, as demonstrated by appending an "addr=" statement to the login name, aka "audit log injection."
Max CVSS
7.5
EPSS Score
1.22%
Published
2008-04-24
Updated
2023-02-13
4 vulnerabilities found