Description
mount in util-linux 2.19 and earlier does not remove the /etc/mtab.tmp file after a failed attempt to add a mount entry, which allows local users to trigger corruption of the /etc/mtab file via multiple invocations.
Affected products
- Linux / util-linux2.19
- Linux / util-linux2.2 – 2.2
- Linux / util-linux2.5 – 2.5
- Linux / util-linux2.7 – 2.7
- Linux / util-linux2.8 – 2.8
- Linux / util-linux2.9 – 2.9
- Linux / util-linux2.10 – 2.10
- Linux / util-linux2.11 – 2.11
- Linux / util-linux2.12 – 2.12
- Linux / util-linux2.12 – 2.12
- Linux / util-linux2.13 – 2.13
- Linux / util-linux2.13 – 2.13
- Linux / util-linux2.14 – 2.14
- Linux / util-linux2.15 – 2.15
- Linux / util-linux2.16 – 2.16
- Linux / util-linux2.17 – 2.17
- Linux / util-linux2.18 – 2.18
References
- MAILING_LISThttp://openwall.com/lists/oss-security/2011/03/14/5
- MAILING_LISThttp://openwall.com/lists/oss-security/2011/03/04/9
- MAILING_LISThttp://openwall.com/lists/oss-security/2011/03/22/6
- MAILING_LISThttp://openwall.com/lists/oss-security/2011/03/22/4
- MAILING_LISThttp://openwall.com/lists/oss-security/2011/03/05/7
- MISChttps://bugzilla.redhat.com/show_bug.cgi?id=688980
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/66704
- MAILING_LISThttp://openwall.com/lists/oss-security/2011/03/07/9
- MAILING_LISThttp://openwall.com/lists/oss-security/2011/04/01/2
- MAILING_LISThttp://openwall.com/lists/oss-security/2011/03/04/10
- MAILING_LISThttp://openwall.com/lists/oss-security/2011/03/14/16
- MAILING_LISThttp://openwall.com/lists/oss-security/2011/03/31/4
- MAILING_LISThttp://openwall.com/lists/oss-security/2011/03/04/12
- MAILING_LISThttp://openwall.com/lists/oss-security/2011/03/14/7
- MAILING_LISThttp://openwall.com/lists/oss-security/2011/03/04/11
- MAILING_LISThttp://openwall.com/lists/oss-security/2011/03/05/3
- MAILING_LISThttp://openwall.com/lists/oss-security/2011/03/31/3
- MAILING_LISThttp://openwall.com/lists/oss-security/2011/03/15/6