MGASA-2013-0126
| Date: | May 2nd, 2013 |
| Affected releases: | 2 |
| Media: | Core |
Description:
Updated util-linux packages fix security vulnerability:
An information disclosure flaw was found in the way the mount command
reported errors. A local attacker could use this flaw to determine the
existence of files and directories they do not have access to
(CVE-2013-0157).
Additionally, an error in the init script for the uuidd service was
corrected. The error affected systemd's ability to tell that the
service is running.
Updated Packages:
i586:
libblkid1-2.21.1-1.2.mga2.i586.rpm
libblkid-devel-2.21.1-1.2.mga2.i586.rpm
libmount1-2.21.1-1.2.mga2.i586.rpm
libmount-devel-2.21.1-1.2.mga2.i586.rpm
libuuid1-2.21.1-1.2.mga2.i586.rpm
libuuid-devel-2.21.1-1.2.mga2.i586.rpm
util-linux-2.21.1-1.2.mga2.i586.rpm
uuidd-2.21.1-1.2.mga2.i586.rpm
util-linux-debug-2.21.1-1.2.mga2.i586.rpm
x86_64:
lib64blkid1-2.21.1-1.2.mga2.x86_64.rpm
lib64blkid-devel-2.21.1-1.2.mga2.x86_64.rpm
lib64mount1-2.21.1-1.2.mga2.x86_64.rpm
lib64mount-devel-2.21.1-1.2.mga2.x86_64.rpm
lib64uuid1-2.21.1-1.2.mga2.x86_64.rpm
lib64uuid-devel-2.21.1-1.2.mga2.x86_64.rpm
util-linux-2.21.1-1.2.mga2.x86_64.rpm
uuidd-2.21.1-1.2.mga2.x86_64.rpm
util-linux-debug-2.21.1-1.2.mga2.x86_64.rpm
SRPMS:
util-linux-2.21.1-1.2.mga2.src.rpm
References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0157
https://rhn.redhat.com/errata/RHSA-2013-0517.html
https://bugs.mageia.org/show_bug.cgi?id=8615
