David Watson

**Name of the Vulnerable Software and Affected Versions** util-linux versions 2.8 through 2.12q util-linux versions 2.13-pre1 through 2.13-pre2 Red Hat Enterprise Linux (affected versions not specified) **Description** The issue concerns multiple vulnerabilities in the util-linux package and Red Hat Enterprise Linux, which can be exploited locally to compromise the confidentiality, integrity, and availability of protected information. The exploitation can be achieved through the `umount` function in util-linux, allowing local users with unmount permissions to gain privileges via the `-r` (remount) option. This option causes the file system to be remounted with just the read-only flag, effectively clearing the `nosuid`, `nodev`, and other flags. **Recommendations** For util-linux versions 2.8 through 2.12q and 2.13-pre1 through 2.13-pre2, consider disabling the `-r` (remount) option in the `umount` function to prevent privilege escalation. For Red Hat Enterprise Linux, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: getmail versions 4.0 through 4.2.0 Description: The issue allows local users to overwrite arbitrary files via a symlink attack on an mbox file when getmail is run as root. Recommendations: For getmail versions 4.0 through 4.1.x, update to version 4.2.0 or later to resolve the issue. For getmail version 4.2.0 before the fix, update to the fixed version to resolve the issue.

Name of the Vulnerable Software and Affected Versions: getmail versions prior to 4.2.0 getmail versions prior to 3.2.5 Description: The issue allows local users to write files in arbitrary directories via a symlink attack on subdirectories in the maildir when getmail is run as root. Recommendations: For versions prior to 4.2.0, update to version 4.2.0 or later. For versions prior to 3.2.5, update to version 3.2.5 or later.