1. Forum
  2. Fsxnet Message
  3. FSX BOT

  • util-linux vulnerability

    From bugz_ubuntu@21:4/110 to Ubuntu Users on Thursday, September 17, 2020 12:10:03
    util-linux vulnerability

    A security issue affects these releases of Ubuntu and its
    derivatives:

    * Ubuntu 18.04 LTS

    Summary

    util-linux could be made to run programs when performing bash
    completion.

    Software Description

    * util-linux - miscellaneous system utilities

    Details

    It was discovered that the umount bash completion script shipped
    in util-linux incorrectly handled certain mountpoints. If a local
    attacker were able to create arbitrary mountpoints, another user
    could be tricked into executing arbitrary code when attempting to
    run the umount command with bash completion.

    Update instructions

    The problem can be corrected by updating your system to the
    following package versions:

    Ubuntu 18.04 LTS
    util-linux - 2.31.1-0.4ubuntu3.7

    To update your system, please follow these instructions:
    https://wiki.ubuntu.com/Security/Upgrades.

    In general, a standard system update will make all the necessary
    changes.

    References

    * CVE-2018-7738

    --- Mystic BBS v1.12 A46 (Linux/64)
    * Origin: BZ&BZ BBS (21:4/110)