Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mageiaGentoo FoundationMGASA-2016-0256
HistoryJul 14, 2016 - 11:33 p.m.

Updated util-linux packages fix security vulnerability

2016-07-1423:33:59
Gentoo Foundation
advisories.mageia.org
23

4.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

4.6 Medium

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.002 Low

EPSS

Percentile

53.1%

JSON

The util-linux libblkid is vulnerable to a Denial of Service attack during MSDOS partition table parsing, in the extended partition boot record (EBR). If the next EBR starts at relative offset 0, parse_dos_extended() will loop until running out of memory. An attacker could install a specially crafted MSDOS partition table in a storage device and trick a user into using it. This library is used, among others, by systemd-udevd daemon (CVE-2016-5011).

OSVersionArchitecturePackageVersionFilename
Mageia5noarchutil-linux< 2.25.2-3.4util-linux-2.25.2-3.4.mga5

Related

redhat 1
osv 2
nessus 16
ubuntu 1
cvelist 1
oraclelinux 1
cve 1
openvas 10
ibm 2
veracode 1
centos 1
debiancve 1
ubuntucve 1
redhatcve 1
prion 1
nvd 1
suse 4
photon 2
rosalinux 1
redhat
redhat
(RHSA-2016:2605) Low: util-linux security, bug fix, and enhancement update
2016-11-03 06:07:16
osv
osv
CVE-2016-5011
2017-04-11 15:59:00
util-linux vulnerability
2022-06-14 22:50:13
nessus
nessus
SUSE SLED12 / SLES12 Security Update : util-linux (SUSE-SU-2016:2954-1)
2016-12-01 00:00:00
RHEL 7 : util-linux (RHSA-2016:2605)
2016-11-04 00:00:00
Photon OS 1.0: Util PHSA-2020-1.0-0330
2020-10-14 00:00:00
ubuntu
ubuntu
util-linux vulnerability
2022-06-14 00:00:00
cvelist
cvelist
CVE-2016-5011
2017-04-11 15:00:00
oraclelinux
oraclelinux
util-linux security, bug fix, and enhancement update
2016-11-09 00:00:00
cve
cve
CVE-2016-5011
2017-04-11 15:59:00
openvas
openvas
Huawei EulerOS: Security Advisory for util-linux (EulerOS-SA-2016-1068)
2020-01-23 00:00:00
Mageia: Security Advisory (MGASA-2016-0256)
2022-01-28 00:00:00
RedHat Update for util-linux RHSA-2016:2605-02
2016-11-04 00:00:00
ibm
ibm
Security Bulletin: A vulnerability in util-linux affects PowerKVM (CVE-2016-5011)
2018-06-18 01:34:15
Security Bulletin: Vulnerabilities in util-linux affect Power Hardware Management Console (‪CVE-2016-5011‬‬)
2021-09-23 01:31:39
veracode
veracode
Denial Of Service (DoS)
2018-11-14 01:15:57
centos
centos
libblkid, libmount, libuuid, util, uuidd security update
2016-11-25 15:50:43
debiancve
debiancve
CVE-2016-5011
2017-04-11 15:59:00
ubuntucve
ubuntucve
CVE-2016-5011
2017-04-11 00:00:00
redhatcve
redhatcve
CVE-2016-5011
2016-07-11 11:18:18
prion
prion
Design/Logic Flaw
2017-04-11 15:59:00
nvd
nvd
CVE-2016-5011
2017-04-11 15:59:00
suse
suse
Security update for util-linux (important)
2017-02-23 12:09:03
Security update for SLES 12-SP2 Docker image (important)
2017-10-11 03:08:09
Security update for SLES 12 Docker image (important)
2017-10-11 03:06:53
photon
photon
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-1.0-0330
2020-10-09 00:00:00
Important Photon OS Security Update - PHSA-2020-0330
2020-10-09 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1992
2021-07-02 18:18:58

4.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

4.6 Medium

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.002 Low

EPSS

Percentile

53.1%

JSON
Related for MGASA-2016-0256
redhat1osv2nessus16ubuntu1cvelist1oraclelinux1cve1openvas10ibm2veracode1centos1debiancve1ubuntucve1redhatcve1prion1nvd1suse4photon2rosalinux1