Описание
The encode_name macro in misc/mntent_r.c in the GNU C Library (aka glibc or libc6) 2.11.1 and earlier, as used by ncpmount and mount.cifs, does not properly handle newline characters in mountpoint names, which allows local users to cause a denial of service (mtab corruption), or possibly modify mount options and gain privileges, via a crafted mount request.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | not-affected | 2.12-0ubuntu3 |
| hardy | DNE | |
| intrepid | DNE | |
| jaunty | DNE | |
| karmic | released | 2.10.1-0ubuntu17 |
| lucid | released | 2.11.1-0ubuntu7.1 |
| upstream | needed |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 2.3.6-0ubuntu20.6 |
| devel | DNE | |
| hardy | released | 2.7-10ubuntu6 |
| intrepid | ignored | end of life, was needed |
| jaunty | released | 2.9-4ubuntu6.2 |
| karmic | DNE | |
| lucid | DNE | |
| upstream | needed |
Показывать по
EPSS
7.2 High
CVSS2
Связанные уязвимости
The encode_name macro in misc/mntent_r.c in the GNU C Library (aka glibc or libc6) 2.11.1 and earlier, as used by ncpmount and mount.cifs, does not properly handle newline characters in mountpoint names, which allows local users to cause a denial of service (mtab corruption), or possibly modify mount options and gain privileges, via a crafted mount request.
The encode_name macro in misc/mntent_r.c in the GNU C Library (aka glibc or libc6) 2.11.1 and earlier, as used by ncpmount and mount.cifs, does not properly handle newline characters in mountpoint names, which allows local users to cause a denial of service (mtab corruption), or possibly modify mount options and gain privileges, via a crafted mount request.
The encode_name macro in misc/mntent_r.c in the GNU C Library (aka gli ...
The encode_name macro in misc/mntent_r.c in the GNU C Library (aka glibc or libc6) 2.11.1 and earlier, as used by ncpmount and mount.cifs, does not properly handle newline characters in mountpoint names, which allows local users to cause a denial of service (mtab corruption), or possibly modify mount options and gain privileges, via a crafted mount request.
Уязвимость библиотеки, обеспечивающей системные вызовы и основные функции glibc, позволяющая нарушителю вызвать отказ в обслуживании или повысить свои привилегии
EPSS
7.2 High
CVSS2