Описание
ELSA-2026-1696: util-linux security update (MODERATE)
[2.40.2-15]
- libblkid: use snprintf() instead of sprintf()
[2.40.2-14]
- Fix setpwnam() buffer use [CVE-2025-14104]
Обновленные пакеты
Oracle Linux 10
Oracle Linux aarch64
libblkid-devel
2.40.2-15.el10_1
libmount-devel
2.40.2-15.el10_1
libuuid-devel
2.40.2-15.el10_1
python3-libmount
2.40.2-15.el10_1
uuidd
2.40.2-15.el10_1
libblkid
2.40.2-15.el10_1
libfdisk
2.40.2-15.el10_1
libmount
2.40.2-15.el10_1
libsmartcols
2.40.2-15.el10_1
libuuid
2.40.2-15.el10_1
util-linux
2.40.2-15.el10_1
util-linux-core
2.40.2-15.el10_1
libfdisk-devel
2.40.2-15.el10_1
libsmartcols-devel
2.40.2-15.el10_1
Oracle Linux x86_64
libblkid-devel
2.40.2-15.el10_1
libmount-devel
2.40.2-15.el10_1
libuuid-devel
2.40.2-15.el10_1
python3-libmount
2.40.2-15.el10_1
uuidd
2.40.2-15.el10_1
libblkid
2.40.2-15.el10_1
libfdisk
2.40.2-15.el10_1
libmount
2.40.2-15.el10_1
libsmartcols
2.40.2-15.el10_1
libuuid
2.40.2-15.el10_1
util-linux
2.40.2-15.el10_1
util-linux-core
2.40.2-15.el10_1
libfdisk-devel
2.40.2-15.el10_1
libsmartcols-devel
2.40.2-15.el10_1
Связанные CVE
Связанные уязвимости
A flaw was found in util-linux. This vulnerability allows a heap buffer overread when processing 256-byte usernames, specifically within the `setpwnam()` function, affecting SUID (Set User ID) login-utils utilities writing to the password database.
A flaw was found in util-linux. This vulnerability allows a heap buffer overread when processing 256-byte usernames, specifically within the `setpwnam()` function, affecting SUID (Set User ID) login-utils utilities writing to the password database.
Util-linux: util-linux: heap buffer overread in setpwnam() when processing 256-byte usernames
A flaw was found in util-linux. This vulnerability allows a heap buffe ...
