MDVSA-2012:083 -- Mandriva util-linuxID: oval:org.secpod.oval:def:302899 | Date: (C)2012-10-30 (M)2023-02-13 |
Class: PATCH | Family: unix |
Multiple vulnerabilities has been discovered and corrected in util-linux: mount in util-linux 2.19 and earlier attempts to append to the /etc/mtab.tmp file without first checking whether resource limits would interfere, which allows local users to trigger corruption of the /etc/mtab file via a process with a small RLIMIT_FSIZE value, a related issue to CVE-2011-1089 . mount in util-linux 2.19 and earlier does not remove the /etc/mtab~ lock file after a failed attempt to add a mount entry, which has unspecified impact and local attack vectors . The updated packages have been patched to correct this issue.
Platform: |
Mandriva Linux 2011.0 |
Mandriva Linux 2010.1 |