MidnightBSD

Advisories for loop-aes-utils_project

CVE-2007-5191 HIGH

mount and umount in util-linux and loop-aes-utils call the setuid and setgid functions in the wrong order and do not check the return values, which might allow attackers to gain privileges via helpers such as mount.nfs.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-252,

Products Affected

Vendor Product Version
fedoraproject fedora 7
kernel util-linux *
loop-aes-utils_project loop-aes-utils -
canonical ubuntu_linux 7.04
debian debian_linux 3.1
canonical ubuntu_linux 6.06
canonical ubuntu_linux 6.10