CVE-2014-9114

Опубликовано: 26 нояб. 2014

Источник: redhat

CVSS2: 6.2

EPSS Низкий

Описание

Blkid in util-linux before 2.26rc-1 allows local users to execute arbitrary code.

Отчет

This issue affects the versions of util-linux as shipped with Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this issue as having Moderate security impact. Because exploitability of this issue requires conditions unlikely to occur, this issue is not currently planned to be addressed in future updates. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 5	util-linux	Not affected
Red Hat Enterprise Linux 6	util-linux-ng	Will not fix
Red Hat Enterprise Linux 7	util-linux	Will not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-77

https://bugzilla.redhat.com/show_bug.cgi?id=1168485util-linux: command injection flaw in blkid

EPSS

Процентиль: 33%

0.00132

Низкий

6.2 Medium

CVSS2

Связанные уязвимости

CVE-2014-9114

CVSS3: 7.8

ubuntu

почти 9 лет назад

Blkid in util-linux before 2.26rc-1 allows local users to execute arbitrary code.

CVE-2014-9114

CVSS3: 7.8

nvd

почти 9 лет назад

Blkid in util-linux before 2.26rc-1 allows local users to execute arbitrary code.

CVE-2014-9114

CVSS3: 7.8

debian

почти 9 лет назад

Blkid in util-linux before 2.26rc-1 allows local users to execute arbi ...

SUSE-SU-2015:0580-1

suse-cvrf

больше 11 лет назад

Recommended update for util-linux

SUSE-SU-2015:0270-1

suse-cvrf

почти 11 лет назад

Security update for util-linux

EPSS

Процентиль: 33%

0.00132

Низкий

6.2 Medium

CVSS2