Описание
(a) mount and (b) umount in util-linux 2.14.1, 2.17.2, and probably other versions allow local users to determine the existence of restricted directories by (1) using the --guess-fstype command-line option or (2) attempting to mount a non-existent device, which generates different error messages depending on whether the directory exists.
Релиз | Статус | Примечание |
---|---|---|
artful | not-affected | 2.26.2-6ubuntu1 |
bionic | not-affected | 2.26.2-6ubuntu1 |
cosmic | not-affected | 2.26.2-6ubuntu1 |
devel | not-affected | 2.26.2-6ubuntu1 |
disco | not-affected | 2.26.2-6ubuntu1 |
eoan | not-affected | 2.26.2-6ubuntu1 |
esm-infra-legacy/trusty | needed | |
esm-infra/bionic | not-affected | 2.26.2-6ubuntu1 |
esm-infra/focal | not-affected | 2.26.2-6ubuntu1 |
esm-infra/xenial | not-affected | 2.26.2-6ubuntu1 |
Показывать по
Ссылки на источники
2.1 Low
CVSS2
Связанные уязвимости
(a) mount and (b) umount in util-linux 2.14.1, 2.17.2, and probably other versions allow local users to determine the existence of restricted directories by (1) using the --guess-fstype command-line option or (2) attempting to mount a non-existent device, which generates different error messages depending on whether the directory exists.
(a) mount and (b) umount in util-linux 2.14.1, 2.17.2, and probably other versions allow local users to determine the existence of restricted directories by (1) using the --guess-fstype command-line option or (2) attempting to mount a non-existent device, which generates different error messages depending on whether the directory exists.
a) mount and (b) umount in util-linux 2.14.1, 2.17.2, and probably ot ...
(a) mount and (b) umount in util-linux 2.14.1, 2.17.2, and probably other versions allow local users to determine the existence of restricted directories by (1) using the --guess-fstype command-line option or (2) attempting to mount a non-existent device, which generates different error messages depending on whether the directory exists.
ELSA-2013-0517: util-linux-ng security, bug fix and enhancement update (LOW)
2.1 Low
CVSS2