 
| Subject: | |
| From: | |
| Reply To: | |
| Date: | Thu, 15 Nov 2007 14:11:04 -0600 |
| Content-Type: | text/plain |
| Parts/Attachments: |
|
|
Synopsis: Moderate: util-linux security update
Issue date: 2007-11-15
CVE Names: CVE-2007-5191
A flaw was discovered in the way that the mount and umount utilities
used the setuid and setgid functions, which could lead to privileges being
dropped improperly. A local user could use this flaw to run mount helper
applications such as, mount.nfs, with additional privileges (CVE-2007-5191)
SL 3.0.x
SRPMS:
util-linux-2.11y-31.24.src.rpm
i386:
losetup-2.11y-31.24.i386.rpm
mount-2.11y-31.24.i386.rpm
util-linux-2.11y-31.24.i386.rpm
x86_64:
losetup-2.11y-31.24.x86_64.rpm
mount-2.11y-31.24.x86_64.rpm
util-linux-2.11y-31.24.x86_64.rpm
SL 4.x
SRPMS:
util-linux-2.12a-17.1.src.rpm
i386:
util-linux-2.12a-17.1.i386.rpm
x86_64:
util-linux-2.12a-17.1.x86_64.rpm
SL 5.x
SRPMS:
util-linux-2.13-0.45.el5.1.src.rpm
i386:
util-linux-2.13-0.45.el5.1.i386.rpm
x86_64:
util-linux-2.13-0.45.el5.1.x86_64.rpm
-Connie Sieh
-Troy Dawson
|
|
|
