CVE-2007-5191

util-linux/loop-aes-utils - Privilege Escalation

Title source: llm
STIX 2.1

Description

mount and umount in util-linux and loop-aes-utils call the setuid and setgid functions in the wrong order and do not check the return values, which might allow attackers to gain privileges via helpers such as mount.nfs.

References (34)

Core 34
Core References
Broken Link x_refsource_confirm
https://issues.rpath.com/browse/RPL-1757
Third Party Advisory vendor-advisory x_refsource_fedora
https://www.redhat.com/archives/fedora-package-announce/2007-October/msg00144.html
Issue Tracking, Third Party Advisory x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=320041
Third Party Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/usn-533-1
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/27145
Issue Tracking, Third Party Advisory x_refsource_confirm
http://bugs.gentoo.org/show_bug.cgi?id=195390
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/27122
Third Party Advisory vendor-advisory x_refsource_mandriva
http://frontal2.mandriva.com/en/security/advisories?name=MDKSA-2007:198
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/28349
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2008/dsa-1449
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2008/dsa-1450
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/27104
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/27283
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/485936/100/0/threaded
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/27354
Third Party Advisory mailing-list x_refsource_mlist
http://lists.vmware.com/pipermail/security-announce/2008/000002.html
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/28469
Third Party Advisory vendor-advisory x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-200710-18.xml
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/28348
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1018782
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/27687
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/28368
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/27399
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/25973
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/27188
Third Party Advisory x_refsource_confirm
http://support.avaya.com/elmodocs2/security/ASA-2008-023.htm
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/3417
Third Party Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2007-0969.html
Mailing List, Third Party Advisory vendor-advisory x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2007-10/msg00008.html
Third Party Advisory x_refsource_confirm
http://www.vmware.com/security/advisories/VMSA-2008-0001.html
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2008/0064
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/486859/100/0/threaded

Scores

EPSS 0.0044
EPSS Percentile 34.8%

Details

CWE
CWE-252
Status published
Products (7)
canonical/ubuntu_linux 6.06
canonical/ubuntu_linux 6.10
canonical/ubuntu_linux 7.04
debian/debian_linux 3.1
fedoraproject/fedora 7
kernel/util-linux < 2.13.1.1
loop-aes-utils_project/loop-aes-utils
Published Oct 04, 2007
Tracked Since Feb 18, 2026