Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
util-linux vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2018-7738
In util-linux prior to 2.32-rc1, bash-completion/umount allows local users to gain privileges by embedding shell commands in a mountpoint name, which is mishandled during a umount command (within Bash) by a different user, as demonstrated by logging in as root and entering umount...
Kernel Util-linux
NA
CVE-2020-21583
An issue exists in hwclock.13-v2.27 allows malicious users to gain escalated privlidges or execute arbitrary commands via the path parameter when setting the date.
Kernel Util-linux
5
CVSSv2
CVE-2004-0080
The login program in util-linux 2.11 and previous versions uses a pointer after it has been freed and reallocated, which could cause login to leak sensitive data.
Andries Brouwer Util-linux
4.1
CVSSv2
CVE-2006-7108
login in util-linux-2.12a skips pam_acct_mgmt and chauth_tok when authentication is skipped, such as when a Kerberos krlogin session has been established, which might allow users to bypass intended access policies that would be enforced by pam_acct_mgmt and chauth_tok.
Andries Brouwer Util-linux 2.12a
7.2
CVSSv2
CVE-2016-2779
runuser in util-linux allows local users to escape to the parent session via a crafted TIOCSTI ioctl call, which pushes characters to the terminal's input buffer.
Kernel Util-linux 2.24.2-1
10 Github repositories
NA
CVE-2021-3995
A logic error was found in the libmount library of util-linux in the function that allows an unprivileged user to unmount a FUSE filesystem. This flaw allows an unprivileged local malicious user to unmount FUSE filesystems that belong to certain other users who have a UID that is...
Kernel Util-linux
Fedoraproject Fedora 35
1 Github repository
NA
CVE-2021-3996
A logic error was found in the libmount library of util-linux in the function that allows an unprivileged user to unmount a FUSE filesystem. This flaw allows a local user on a vulnerable system to unmount other users' filesystems that are either world-writable themselves (li...
Kernel Util-linux
Fedoraproject Fedora 35
1 Github repository
1.2
CVSSv2
CVE-2021-37600
An integer overflow in util-linux up to and including 2.37.1 can potentially cause a buffer overflow if an attacker were able to use system resources in a way that leads to a large number in the /proc/sysvipc/sem file. NOTE: this is unexploitable in GNU C Library environments, an...
Kernel Util-linux
Netapp Ontap Select Deploy Administration Utility -
1.9
CVSSv2
CVE-2022-0563
A flaw was found in the util-linux chfn and chsh utilities when compiled with Readline support. The Readline library uses an "INPUTRC" environment variable to get a path to the library config file. When the library cannot parse the specified file, it prints an error mes...
Kernel Util-linux
Netapp Ontap Select Deploy Administration Utility -
1 Github repository
2.1
CVSSv2
CVE-2015-5218
Buffer overflow in text-utils/colcrt.c in colcrt in util-linux prior to 2.27 allows local users to cause a denial of service (crash) via a crafted file, related to the page global variable.
Kernel Util-linux
Opensuse Opensuse 13.1
Opensuse Project Leap 42.1
Opensuse Opensuse 13.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »