Mandriva Linux Security Advisory : util-linux (MDVSA-2013:154)
Low Nessus Plugin ID 66265
SynopsisThe remote Mandriva Linux host is missing one or more security updates.
DescriptionA vulnerability has been found and corrected in util-linux :
An information disclosure flaw was found in the way the mount command reported errors. A local attacker could use this flaw to determine the existence of files and directories they do not have access to (CVE-2013-0157).
Additionally for Mandriva Enterprise Server 5 a patch was added to support a new --no-canonicalize switch for mount to support the fix for CVE-2010-3879 in fuse.
The updated packages have been patched to correct these issues.
SolutionUpdate the affected packages.