Fedora 8 : util-linux-ng-2.13.1-2.fc8 (2008-3419)

This script is Copyright (C) 2008-2015 Tenable Network Security, Inc.


Synopsis :

The remote Fedora host is missing a security update.

Description :

- Tue Apr 22 2008 Karel Zak <kzak at redhat.com> 2.13.1-2

- fix audit log injection attack via login

- Wed Jan 16 2008 Karel Zak <kzak at redhat.com>
2.13.1-1

- upgrade to stable util-linux-ng 2.13.1

- fix #427874 - util-linux-ng gets 'excess command line
argument' on update

- Thu Jan 3 2008 Karel Zak <kzak at redhat.com> 2.13-3.2

- fix #427207 - util-linux-ng-2.13-3.1.fc8.src.rpm not
rebuilded

- Wed Dec 5 2007 Karel Zak <kzak at redhat.com> 2.13-3.1

- fix #409551 - hwclock: check for ENODEV (upstream
patch)

- fix #408391 - setarch: add missing alpha subarchs
(upstream patch)

- mkswap: possible to crash with SELinux relabeling
support (upstream patch)

- mount: don't call canonicalize(SPEC) for cifs, smbfs
and nfs (upstream patch)

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.

See also :

https://bugzilla.redhat.com/show_bug.cgi?id=443925
http://www.nessus.org/u?7297fd44

Solution :

Update the affected util-linux-ng package.

Risk factor :

High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)

Family: Fedora Local Security Checks

Nessus Plugin ID: 32108 (fedora_2008-3419.nasl)

Bugtraq ID:

CVE ID: CVE-2008-1926

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now