CVE-2011-1676

Name of the Vulnerable Software and Affected Versions util-linux versions prior to 2.22.2

Description The issue concerns multiple vulnerabilities in the util-linux package that can lead to breaches of confidentiality, integrity, and availability of protected information. These vulnerabilities can be exploited locally. Specifically, in util-linux 2.19 and earlier, the mount function does not remove the /etc/mtab.tmp file after a failed attempt to add a mount entry. This allows local users to cause corruption of the /etc/mtab file through multiple invocations.

Recommendations For versions prior to 2.22.2, update to version 2.22.2 or later to resolve the issue. As a temporary workaround, consider restricting access to the mount function to minimize the risk of exploitation.