GCVE - cpe:2.3:a:linux:util-linux:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:linux:util-linux:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Linux (`f4ceb328-5d50-5b0b-a2e1-fa3f16dc0244`)
Product	Util Linux (`1f3440f5-cbe1-5862-94b4-5352fce5000a`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from purl2cpe mapping

PURL mappings

PURL	Source	Last updated
`pkg:deb/debian/util-linux`	purl2cpe	2026-06-01 10:13:32.792102
`pkg:deb/ubuntu/util-linux`	purl2cpe	2026-06-01 10:13:32.792104
`pkg:github/util-linux/util-linux`	purl2cpe	2026-06-01 10:13:32.792105
`pkg:gitlab/redhat/util-linux`	purl2cpe	2026-06-01 10:13:32.792107
`pkg:rpm/fedora/util-linux`	purl2cpe	2026-06-01 10:13:32.792108
`pkg:rpm/opensuse/util-linux`	purl2cpe	2026-06-01 10:13:32.792110

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2017-2616`	vulnerable	2026-06-03 14:37:07.806979	Details available MEDIUM (5.5) A race condition was found in util-linux before 2.32.1 in the way su handled the management of child processes. A local authenticated attacker could use this flaw to kill other processes with root privileges under specific conditions. Published: 2018-07-27T19:00:00.000Z Updated: 2025-06-09T15:37:51.878Z Open on db.gcve.eu Reference links https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-2616 http://www.securityfocus.com/bid/96404 https://access.redhat.com/errata/RHSA-2017:0907 http://rhn.redhat.com/errata/RHSA-2017-0654.html https://security.gentoo.org/glsa/201706-02	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2011-1677`	vulnerable	2026-06-03 14:31:03.209538	Details available mount in util-linux 2.19 and earlier does not remove the /etc/mtab~ lock file after a failed attempt to add a mount entry, which has unspecified impact and local attack vectors. Published: 2011-04-10T01:29:00.000Z Updated: 2024-08-06T22:37:24.861Z Open on db.gcve.eu Reference links http://openwall.com/lists/oss-security/2011/03/14/5 http://openwall.com/lists/oss-security/2011/03/04/9 https://exchange.xforce.ibmcloud.com/vulnerabilities/66703 http://openwall.com/lists/oss-security/2011/03/22/6 http://openwall.com/lists/oss-security/2011/03/22/4	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2011-1676`	vulnerable	2026-06-03 14:31:03.208501	Details available mount in util-linux 2.19 and earlier does not remove the /etc/mtab.tmp file after a failed attempt to add a mount entry, which allows local users to trigger corruption of the /etc/mtab file via multiple invocations. Published: 2011-04-10T01:29:00.000Z Updated: 2024-08-06T22:37:25.553Z Open on db.gcve.eu Reference links http://openwall.com/lists/oss-security/2011/03/14/5 http://openwall.com/lists/oss-security/2011/03/04/9 http://openwall.com/lists/oss-security/2011/03/22/6 http://openwall.com/lists/oss-security/2011/03/22/4 http://openwall.com/lists/oss-security/2011/03/05/7	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2011-1675`	vulnerable	2026-06-03 14:31:03.199574	Details available mount in util-linux 2.19 and earlier attempts to append to the /etc/mtab.tmp file without first checking whether resource limits would interfere, which allows local users to trigger corruption of the /etc/mtab file via a process with a small RLIMIT_FSIZE value, a related issue to CVE-2011-1089. Published: 2011-04-10T01:29:00.000Z Updated: 2024-08-06T22:37:25.594Z Open on db.gcve.eu Reference links http://openwall.com/lists/oss-security/2011/03/14/5 http://openwall.com/lists/oss-security/2011/03/04/9 http://openwall.com/lists/oss-security/2011/03/22/6 http://openwall.com/lists/oss-security/2011/03/22/4 http://openwall.com/lists/oss-security/2011/03/05/7	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.