GLSA
Advocate
Joined: 12 May 2004
Posts: 2663
|
 Posted: Sun May 18, 2014 1:26 pm Post subject: [ GLSA 201405-15 ] util-linux: Multiple vulnerabilities |
 |
|
Gentoo Linux Security Advisory
Title: util-linux: Multiple vulnerabilities (GLSA 201405-15)
Severity: normal
Exploitable: local
Date: May 18, 2014
Bug(s): #359759, #450740
ID: 201405-15
Synopsis
Multiple vulnerabilities have been found in util-linux, the worst
of which may lead to Denial of Service.
Background
util-linux is a suite of Linux programs including mount and umount,
programs used to mount and unmount filesystems.
Affected Packages
Package: sys-apps/util-linux
Vulnerable: < 2.22.2
Unaffected: >= 2.22.2
Architectures: All supported architectures
Description
Multiple vulnerabilities have been discovered in util-linux. Please
review the CVE identifiers referenced below for details.
Impact
A local attacker may be able to cause a Denial of Service condition,
trigger corruption of /etc/mtab, obtain sensitive information, or have
other unspecified impact.
Workaround
There is no known workaround at this time.
Resolution
All util-linux users should upgrade to the latest version: | Code: | # emerge --sync
# emerge --ask --oneshot --verbose ">=sys-apps/util-linux-2.22.2"
|
References
CVE-2011-1675
CVE-2011-1676
CVE-2011-1677
CVE-2013-0157 |
|
News & Announcements
