USN-6719-1

See a problem?
Source
https://ubuntu.com/security/notices/USN-6719-1
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/USN-6719-1.json
JSON Data
https://api.osv.dev/v1/vulns/USN-6719-1
Related
Published
2024-03-27T15:23:13.657898Z
Modified
2024-03-27T15:23:13.657898Z
Summary
util-linux vulnerability
Details

Skyler Ferrante discovered that the util-linux wall command did not filter escape sequences from command line arguments. A local attacker could possibly use this issue to obtain sensitive information.

References

Affected packages

Ubuntu:20.04:LTS / util-linux

Package

Name
util-linux

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.34-0.1ubuntu9.5

Ecosystem specific

{
    "availability": "No subscription needed",
    "binaries": [
        {
            "util-linux-locales": "2.34-0.1ubuntu9.5",
            "libfdisk-dev": "2.34-0.1ubuntu9.5",
            "uuid-runtime": "2.34-0.1ubuntu9.5",
            "libsmartcols1": "2.34-0.1ubuntu9.5",
            "util-linux": "2.34-0.1ubuntu9.5",
            "fdisk": "2.34-0.1ubuntu9.5",
            "libuuid1": "2.34-0.1ubuntu9.5",
            "libmount-dev": "2.34-0.1ubuntu9.5",
            "uuid-dev": "2.34-0.1ubuntu9.5",
            "mount": "2.34-0.1ubuntu9.5",
            "libmount1": "2.34-0.1ubuntu9.5",
            "rfkill": "2.34-0.1ubuntu9.5",
            "libfdisk1": "2.34-0.1ubuntu9.5",
            "libsmartcols-dev": "2.34-0.1ubuntu9.5",
            "bsdutils": "1:2.34-0.1ubuntu9.5",
            "libblkid1": "2.34-0.1ubuntu9.5",
            "libblkid-dev": "2.34-0.1ubuntu9.5"
        }
    ]
}

Ubuntu:22.04:LTS / util-linux

Package

Name
util-linux

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.37.2-4ubuntu3.3

Ecosystem specific

{
    "availability": "No subscription needed",
    "binaries": [
        {
            "util-linux-locales": "2.37.2-4ubuntu3.3",
            "libfdisk-dev": "2.37.2-4ubuntu3.3",
            "uuid-runtime": "2.37.2-4ubuntu3.3",
            "libsmartcols1": "2.37.2-4ubuntu3.3",
            "util-linux": "2.37.2-4ubuntu3.3",
            "fdisk": "2.37.2-4ubuntu3.3",
            "eject": "2.37.2-4ubuntu3.3",
            "libuuid1": "2.37.2-4ubuntu3.3",
            "libmount-dev": "2.37.2-4ubuntu3.3",
            "uuid-dev": "2.37.2-4ubuntu3.3",
            "mount": "2.37.2-4ubuntu3.3",
            "libmount1": "2.37.2-4ubuntu3.3",
            "rfkill": "2.37.2-4ubuntu3.3",
            "bsdextrautils": "2.37.2-4ubuntu3.3",
            "libfdisk1": "2.37.2-4ubuntu3.3",
            "libsmartcols-dev": "2.37.2-4ubuntu3.3",
            "bsdutils": "1:2.37.2-4ubuntu3.3",
            "libblkid1": "2.37.2-4ubuntu3.3",
            "libblkid-dev": "2.37.2-4ubuntu3.3"
        }
    ]
}

Ubuntu:23.10 / util-linux

Package

Name
util-linux

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.39.1-4ubuntu2.1

Ecosystem specific

{
    "availability": "No subscription needed",
    "binaries": [
        {
            "util-linux-locales": "2.39.1-4ubuntu2.1",
            "libfdisk-dev": "2.39.1-4ubuntu2.1",
            "uuid-runtime": "2.39.1-4ubuntu2.1",
            "libsmartcols1": "2.39.1-4ubuntu2.1",
            "util-linux": "2.39.1-4ubuntu2.1",
            "fdisk": "2.39.1-4ubuntu2.1",
            "eject": "2.39.1-4ubuntu2.1",
            "libuuid1": "2.39.1-4ubuntu2.1",
            "libmount-dev": "2.39.1-4ubuntu2.1",
            "uuid-dev": "2.39.1-4ubuntu2.1",
            "mount": "2.39.1-4ubuntu2.1",
            "libmount1": "2.39.1-4ubuntu2.1",
            "rfkill": "2.39.1-4ubuntu2.1",
            "bsdextrautils": "2.39.1-4ubuntu2.1",
            "libfdisk1": "2.39.1-4ubuntu2.1",
            "libsmartcols-dev": "2.39.1-4ubuntu2.1",
            "util-linux-extra": "2.39.1-4ubuntu2.1",
            "bsdutils": "1:2.39.1-4ubuntu2.1",
            "libblkid1": "2.39.1-4ubuntu2.1",
            "libblkid-dev": "2.39.1-4ubuntu2.1"
        }
    ]
}