MDVSA-2013:154 -- Mandriva util-linuxID: oval:org.secpod.oval:def:1300189 | Date: (C)2013-05-08 (M)2022-10-10 |
Class: PATCH | Family: unix |
A vulnerability has been found and corrected in util-linux: An information disclosure flaw was found in the way the mount command reported errors. A local attacker could use this flaw to determine the existence of files and directories they do not have access to . Additionally for Mandriva Enterprise Server 5 a patch was added to support a new --no-canonicalize switch for mount to support the fix for CVE-2010-3879 in fuse. The updated packages have been patched to correct these issues.
Platform: |
Mandriva Enterprise Server 5.2 |