CVE-2013-0157
published 2014-01-21CVE-2013-0157: (a) mount and (b) umount in util-linux 2.14.1, 2.17.2, and probably other versions allow local users to determine the existence of restricted directories by…
low2.1CVSS 3.1
AVLACLAuNCPINAN
(a) mount and (b) umount in util-linux 2.14.1, 2.17.2, and probably other versions allow local users to determine the existence of restricted directories by (1) using the --guess-fstype command-line option or (2) attempting to mount a non-existent device, which generates different error messages depending on whether the directory exists.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | util-linux | < util-linux 2.20.1-5.5 (bookworm) | util-linux 2.20.1-5.5 (bookworm) |
| kernel | util-linux | — | — |
| kernel | util-linux | — | — |
| kernel | util-linux | >= 0 < 2.20.1-5.5 | 2.20.1-5.5 |
| kernel | util-linux | >= 0 < 2.20.1-5.5 | 2.20.1-5.5 |
| kernel | util-linux | >= 0 < 2.20.1-5.5 | 2.20.1-5.5 |
| kernel | util-linux | >= 0 < 2.20.1-5.5 | 2.20.1-5.5 |
| openstack | horizon | >= 2013.2 < 2013.2.4 | 2013.2.4 |
CVSS provenance
nvd2.1LOWAV:L/AC:L/Au:N/C:P/I:N/A:N
osv2.1LOW