CVE-2011-1676

mount in util-linux 2.19 and earlier does not remove the /etc/mtab.tmp file after a failed attempt to add a mount entry, which allows local users to trigger corruption of the /etc/mtab file via multiple invocations.

Published: Apr 10, 2011
Updated: Apr 13, 2023
CVE: CVE-2011-1676
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 3.3
AV:L/AC:M/Au:N/C:P/I:P/A:N

CWEs:

CWE-264

Affected Software
References

Software	From	Fixed in
linux / util-linux	2.10	2.10.x
linux / util-linux	2.5	2.5.x
linux / util-linux	2.16	2.16.x
linux / util-linux	2.11	2.11.x
linux / util-linux	2.12	2.12.x
linux / util-linux	2.17	2.17.x
linux / util-linux	2.13	2.13.x
linux / util-linux	2.14	2.14.x
linux / util-linux	2.12-pre	2.12-pre.x
linux / util-linux	2.2	2.2.x
linux / util-linux	-	2.19.x
linux / util-linux	2.8	2.8.x
linux / util-linux	2.18	2.18.x
linux / util-linux	2.7	2.7.x
linux / util-linux	2.9	2.9.x
linux / util-linux	2.13-pre	2.13-pre.x
linux / util-linux	2.15	2.15.x

http://openwall.com/lists/oss-security/2011/03/04/10
http://openwall.com/lists/oss-security/2011/03/04/11
http://openwall.com/lists/oss-security/2011/03/04/12
http://openwall.com/lists/oss-security/2011/03/04/9
http://openwall.com/lists/oss-security/2011/03/05/3
http://openwall.com/lists/oss-security/2011/03/05/7
http://openwall.com/lists/oss-security/2011/03/07/9
http://openwall.com/lists/oss-security/2011/03/14/16
http://openwall.com/lists/oss-security/2011/03/14/5
http://openwall.com/lists/oss-security/2011/03/14/7
http://openwall.com/lists/oss-security/2011/03/15/6
http://openwall.com/lists/oss-security/2011/03/22/4
http://openwall.com/lists/oss-security/2011/03/22/6
http://openwall.com/lists/oss-security/2011/03/31/3
http://openwall.com/lists/oss-security/2011/03/31/4
http://openwall.com/lists/oss-security/2011/04/01/2
https://bugzilla.redhat.com/show_bug.cgi?id=688980
https://exchange.xforce.ibmcloud.com/vulnerabilities/66704

Vulnerability Database

289,599

CVE-2011-1676