CVE-2011-1676

CWE-2647 documents6 sources

Severity

3.3LOW

EPSS

0.1%

top 73.35%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Util-linux

Timeline

PublishedApr 10

Latest updateMay 17

Description

mount in util-linux 2.19 and earlier does not remove the /etc/mtab.tmp file after a failed attempt to add a mount entry, which allows local users to trigger corruption of the /etc/mtab file via multiple invocations.

CVSS vector

AV:L/AC:M/C:P/I:P/A:NExploitability: 3.4 | Impact: 4.9

Affected Packages2 packages

▶Ubuntuutil-linux< 2.20.1-5.1ubuntu20.4

▶NVDlinux/util-linux2.19+14

🔴Vulnerability Details

GHSA

GHSA-xgxp-wxpw-r9x6: mount in util-linux 2↗2022-05-17

▶

OSV

CVE-2011-1676: mount in util-linux 2↗2011-04-10

▶

CVEList

CVE-2011-1676: mount in util-linux 2↗2011-04-10

▶

📋Vendor Advisories

Red Hat

util-linux: mount does not remove /etc/mtab.tmp after failed mount entry addition↗2011-03-03

▶

💬Community

Bugzilla

CVE-2011-1676 util-linux: mount does not remove /etc/mtab.tmp after failed mount entry addition↗2011-04-12

▶

Bugzilla

CVE-2011-0015 CVE-2011-0016 CVE-2011-0427 CVE-2011-0490 CVE-2011-0491 CVE-2011-0492 CVE-2011-0493 CVE-2010-1676 CVE-2010-0383 CVE-2010-0385 tor various flaws [epel-5]↗2011-01-20

▶