Local File Corruption in Mount Utility from Util-Linux
CVE-2011-1675

Currently unrated

Key Information:

Vendor: Linux
Status: Util-linux
Vendor: CVE Published:; 10 April 2011

Summary

The mount utility in util-linux versions 2.19 and earlier allows local users to induce corruption in the /etc/mtab file. This vulnerability arises because the utility appends to the /etc/mtab.tmp file without adequately verifying if resource limits, specifically RLIMIT_FSIZE, would hinder this operation. Consequently, a process with a restricted file size limit can cause damaging effects to the main /etc/mtab file, potentially disrupting system operations and configurations.

References

http://openwall.com/lists/oss-security/2011/03/14/5

mailing-listx_refsource_MLIST

http://openwall.com/lists/oss-security/2011/03/04/9

mailing-listx_refsource_MLIST

http://openwall.com/lists/oss-security/2011/03/22/6

mailing-listx_refsource_MLIST

Timeline

Vulnerability published
Apr 10, 2011
Vulnerability Reserved
Apr 9, 2011