CVE-2013-0157

Опубликовано: 05 янв. 2013

Источник: redhat

CVSS2: 2.1

EPSS Низкий

Описание

(a) mount and (b) umount in util-linux 2.14.1, 2.17.2, and probably other versions allow local users to determine the existence of restricted directories by (1) using the --guess-fstype command-line option or (2) attempting to mount a non-existent device, which generates different error messages depending on whether the directory exists.

Отчет

Red Hat Enterprise Linux 5 is now in Production 3 Phase of the support and maintenance life cycle. This has been rated as having Low security impact and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 4	util-linux	Will not fix
Red Hat Enterprise Linux 5	util-linux	Will not fix
Red Hat Enterprise Linux 6	util-linux-ng	Fixed	RHSA-2013:0517	20.02.2013

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

https://bugzilla.redhat.com/show_bug.cgi?id=892330util-linux: mount folder existence information disclosure

EPSS

Процентиль: 18%

0.00058

Низкий

2.1 Low

CVSS2

Связанные уязвимости

CVE-2013-0157

ubuntu

около 12 лет назад

CVE-2013-0157

nvd

около 12 лет назад

CVE-2013-0157

debian

около 12 лет назад

a) mount and (b) umount in util-linux 2.14.1, 2.17.2, and probably ot ...

GHSA-5f9c-xx25-xwrv

github

почти 4 года назад

ELSA-2013-0517

oracle-oval

почти 13 лет назад

ELSA-2013-0517: util-linux-ng security, bug fix and enhancement update (LOW)

EPSS

Процентиль: 18%

0.00058

Низкий

2.1 Low

CVSS2