Local Vulnerability in Util-Linux Mount by Red Hat
CVE-2011-1677

Currently unrated

Key Information:

Vendor: Linux
Status: Util-linux
Vendor: CVE Published:; 10 April 2011

Summary

The utilization of mount in versions 2.19 and earlier of Util-Linux poses a flaw where the /etc/mtab~ lock file is not removed after failed attempts to add mount entries. This oversight can lead to potential risks, as the remaining lock file may allow unauthorized users to exploit the system through local attack vectors.

References

http://openwall.com/lists/oss-security/2011/03/14/5

mailing-listx_refsource_MLIST

http://openwall.com/lists/oss-security/2011/03/04/9

mailing-listx_refsource_MLIST

https://exchange.xforce.ibmcloud.com/vulnerabilities/66703

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Apr 10, 2011
Vulnerability Reserved
Apr 9, 2011