SUSE-SU-2017:0553-1

Source
https://www.suse.com/support/update/announcement/2017/suse-su-20170553-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2017:0553-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2017:0553-1
Related
Published
2017-02-23T07:49:27Z
Modified
2017-02-23T07:49:27Z
Summary
Security update for util-linux
Details

This update for util-linux fixes a number of bugs and two security issues.

The following security bugs were fixed:

  • CVE-2016-5011: Infinite loop DoS in libblkid while parsing DOS partition (bsc#988361)
  • CVE-2017-2616: In su with PAM support it was possible for local users to send SIGKILL to selected other processes with root privileges (bsc#1023041).

The following non-security bugs were fixed:

  • bsc#1008965: Ensure that the option 'users,exec,dev,suid' work as expected on NFS mounts
  • bsc#1012504: Fix regressions in safe loop re-use patch set for libmount
  • bsc#1012632: Disable ro checks for mtab
  • bsc#1020077: fstrim: De-duplicate btrfs sub-volumes for 'fstrim -a' and bind mounts
  • bsc#947494: mount -a would fail to recognize btrfs already mounted, address loop re-use in libmount
  • bsc#966891: Conflict in meaning of losetup -L. This switch in SLE12 SP1 and SP2 continues to carry the meaning of --logical-blocksize instead of upstream --nooverlap
  • bsc#978993: cfdisk would mangle some text output
  • bsc#982331: libmount: ignore redundant slashes
  • bsc#983164: mount uid= and gid= would reject valid non UID/GID values
  • bsc#987176: When mounting a subfolder of a CIFS share, mount -a would show the mount as busy
  • bsc#1019332: lscpu: Implement WSL detection and work around crash
References

Affected packages

SUSE:Linux Enterprise Server for SAP Applications 12 / python-libmount

Package

Name
python-libmount
Purl
pkg:rpm/suse/python-libmount&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.25-24.10.3

Ecosystem specific

{
    "binaries": [
        {
            "libuuid1-32bit": "2.25-24.10.1",
            "libmount1": "2.25-24.10.1",
            "libblkid1": "2.25-24.10.1",
            "libsmartcols1": "2.25-24.10.1",
            "util-linux": "2.25-24.10.1",
            "libmount1-32bit": "2.25-24.10.1",
            "libblkid1-32bit": "2.25-24.10.1",
            "python-libmount": "2.25-24.10.3",
            "uuidd": "2.25-24.10.1",
            "libuuid1": "2.25-24.10.1",
            "util-linux-lang": "2.25-24.10.1",
            "util-linux-systemd": "2.25-24.10.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 / util-linux

Package

Name
util-linux
Purl
pkg:rpm/suse/util-linux&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.25-24.10.1

Ecosystem specific

{
    "binaries": [
        {
            "libuuid1-32bit": "2.25-24.10.1",
            "libmount1": "2.25-24.10.1",
            "libblkid1": "2.25-24.10.1",
            "libsmartcols1": "2.25-24.10.1",
            "util-linux": "2.25-24.10.1",
            "libmount1-32bit": "2.25-24.10.1",
            "libblkid1-32bit": "2.25-24.10.1",
            "python-libmount": "2.25-24.10.3",
            "uuidd": "2.25-24.10.1",
            "libuuid1": "2.25-24.10.1",
            "util-linux-lang": "2.25-24.10.1",
            "util-linux-systemd": "2.25-24.10.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 / util-linux-systemd

Package

Name
util-linux-systemd
Purl
pkg:rpm/suse/util-linux-systemd&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.25-24.10.1

Ecosystem specific

{
    "binaries": [
        {
            "libuuid1-32bit": "2.25-24.10.1",
            "libmount1": "2.25-24.10.1",
            "libblkid1": "2.25-24.10.1",
            "libsmartcols1": "2.25-24.10.1",
            "util-linux": "2.25-24.10.1",
            "libmount1-32bit": "2.25-24.10.1",
            "libblkid1-32bit": "2.25-24.10.1",
            "python-libmount": "2.25-24.10.3",
            "uuidd": "2.25-24.10.1",
            "libuuid1": "2.25-24.10.1",
            "util-linux-lang": "2.25-24.10.1",
            "util-linux-systemd": "2.25-24.10.1"
        }
    ]
}

SUSE:Linux Enterprise Server 12-LTSS / python-libmount

Package

Name
python-libmount
Purl
pkg:rpm/suse/python-libmount&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSS

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.25-24.10.3

Ecosystem specific

{
    "binaries": [
        {
            "libuuid1-32bit": "2.25-24.10.1",
            "libmount1": "2.25-24.10.1",
            "libblkid1": "2.25-24.10.1",
            "libsmartcols1": "2.25-24.10.1",
            "util-linux": "2.25-24.10.1",
            "libmount1-32bit": "2.25-24.10.1",
            "libblkid1-32bit": "2.25-24.10.1",
            "python-libmount": "2.25-24.10.3",
            "uuidd": "2.25-24.10.1",
            "libuuid1": "2.25-24.10.1",
            "util-linux-lang": "2.25-24.10.1",
            "util-linux-systemd": "2.25-24.10.1"
        }
    ]
}

SUSE:Linux Enterprise Server 12-LTSS / util-linux

Package

Name
util-linux
Purl
pkg:rpm/suse/util-linux&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSS

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.25-24.10.1

Ecosystem specific

{
    "binaries": [
        {
            "libuuid1-32bit": "2.25-24.10.1",
            "libmount1": "2.25-24.10.1",
            "libblkid1": "2.25-24.10.1",
            "libsmartcols1": "2.25-24.10.1",
            "util-linux": "2.25-24.10.1",
            "libmount1-32bit": "2.25-24.10.1",
            "libblkid1-32bit": "2.25-24.10.1",
            "python-libmount": "2.25-24.10.3",
            "uuidd": "2.25-24.10.1",
            "libuuid1": "2.25-24.10.1",
            "util-linux-lang": "2.25-24.10.1",
            "util-linux-systemd": "2.25-24.10.1"
        }
    ]
}

SUSE:Linux Enterprise Server 12-LTSS / util-linux-systemd

Package

Name
util-linux-systemd
Purl
pkg:rpm/suse/util-linux-systemd&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSS

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.25-24.10.1

Ecosystem specific

{
    "binaries": [
        {
            "libuuid1-32bit": "2.25-24.10.1",
            "libmount1": "2.25-24.10.1",
            "libblkid1": "2.25-24.10.1",
            "libsmartcols1": "2.25-24.10.1",
            "util-linux": "2.25-24.10.1",
            "libmount1-32bit": "2.25-24.10.1",
            "libblkid1-32bit": "2.25-24.10.1",
            "python-libmount": "2.25-24.10.3",
            "uuidd": "2.25-24.10.1",
            "libuuid1": "2.25-24.10.1",
            "util-linux-lang": "2.25-24.10.1",
            "util-linux-systemd": "2.25-24.10.1"
        }
    ]
}