SUSE update for util-linux

Published: 2024-04-09

Risk	Low
Patch available	YES
Number of vulnerabilities	1
CVE-ID	CVE-2024-28085
CWE-ID	CWE-20
Exploitation vector	Local
Public exploit	Public exploit code for vulnerability #1 is available.
Vulnerable software Subscribe	SUSE Linux Enterprise Workstation Extension 12 Operating systems & Components / Operating system SUSE Linux Enterprise Software Development Kit 12 Operating systems & Components / Operating system SUSE Linux Enterprise Server for SAP Applications 12 Operating systems & Components / Operating system SUSE Linux Enterprise Server 12 Operating systems & Components / Operating system SUSE Linux Enterprise High Performance Computing 12 Operating systems & Components / Operating system libuuid1-debuginfo-32bit Operating systems & Components / Operating system package or component libuuid1-32bit Operating systems & Components / Operating system package or component libblkid1-32bit Operating systems & Components / Operating system package or component libblkid1-debuginfo-32bit Operating systems & Components / Operating system package or component libmount1-32bit Operating systems & Components / Operating system package or component libmount1-debuginfo-32bit Operating systems & Components / Operating system package or component util-linux-lang Operating systems & Components / Operating system package or component libfdisk1-debuginfo Operating systems & Components / Operating system package or component libsmartcols1 Operating systems & Components / Operating system package or component python-libmount Operating systems & Components / Operating system package or component util-linux Operating systems & Components / Operating system package or component util-linux-systemd-debugsource Operating systems & Components / Operating system package or component libsmartcols1-debuginfo Operating systems & Components / Operating system package or component uuidd-debuginfo Operating systems & Components / Operating system package or component python-libmount-debugsource Operating systems & Components / Operating system package or component uuidd Operating systems & Components / Operating system package or component libuuid1-debuginfo Operating systems & Components / Operating system package or component libfdisk1 Operating systems & Components / Operating system package or component util-linux-systemd-debuginfo Operating systems & Components / Operating system package or component python-libmount-debuginfo Operating systems & Components / Operating system package or component libblkid1-debuginfo Operating systems & Components / Operating system package or component libmount1 Operating systems & Components / Operating system package or component libmount1-debuginfo Operating systems & Components / Operating system package or component util-linux-systemd Operating systems & Components / Operating system package or component libuuid1 Operating systems & Components / Operating system package or component libblkid1 Operating systems & Components / Operating system package or component libsmartcols-devel Operating systems & Components / Operating system package or component libuuid-devel Operating systems & Components / Operating system package or component libmount-devel Operating systems & Components / Operating system package or component util-linux-debuginfo Operating systems & Components / Operating system package or component libblkid-devel Operating systems & Components / Operating system package or component util-linux-debugsource Operating systems & Components / Operating system package or component
Vendor	SUSE

Security Bulletin

This security bulletin contains one low risk vulnerability.

1) Input validation error

EUVDB-ID: #VU87906

Risk: Low

CVSSv3.1: 6.6 [CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C]

CVE-ID: CVE-2024-28085

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to insufficient validation of user-supplied arguments along with setgid tty permissions within the wall command. A local user can execute arbitrary commands with escalated privileges on the system.

Mitigation

Update the affected package util-linux to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Workstation Extension 12: 12-SP5

SUSE Linux Enterprise Software Development Kit 12: SP5

SUSE Linux Enterprise Server for SAP Applications 12: SP5

SUSE Linux Enterprise Server 12: SP5

SUSE Linux Enterprise High Performance Computing 12: SP5

libuuid1-debuginfo-32bit: before 2.33.2-4.36.1

libuuid1-32bit: before 2.33.2-4.36.1

libblkid1-32bit: before 2.33.2-4.36.1

libblkid1-debuginfo-32bit: before 2.33.2-4.36.1

libmount1-32bit: before 2.33.2-4.36.1

libmount1-debuginfo-32bit: before 2.33.2-4.36.1

util-linux-lang: before 2.33.2-4.36.1

libfdisk1-debuginfo: before 2.33.2-4.36.1

libsmartcols1: before 2.33.2-4.36.1

python-libmount: before 2.33.2-4.36.1

util-linux: before 2.33.2-4.36.1

util-linux-systemd-debugsource: before 2.33.2-4.36.1

libsmartcols1-debuginfo: before 2.33.2-4.36.1

uuidd-debuginfo: before 2.33.2-4.36.1

python-libmount-debugsource: before 2.33.2-4.36.1

uuidd: before 2.33.2-4.36.1

libuuid1-debuginfo: before 2.33.2-4.36.1

libfdisk1: before 2.33.2-4.36.1

util-linux-systemd-debuginfo: before 2.33.2-4.36.1

python-libmount-debuginfo: before 2.33.2-4.36.1

libblkid1-debuginfo: before 2.33.2-4.36.1

libmount1: before 2.33.2-4.36.1

libmount1-debuginfo: before 2.33.2-4.36.1

util-linux-systemd: before 2.33.2-4.36.1

libuuid1: before 2.33.2-4.36.1

libblkid1: before 2.33.2-4.36.1

libsmartcols-devel: before 2.33.2-4.36.1

libuuid-devel: before 2.33.2-4.36.1

libmount-devel: before 2.33.2-4.36.1

util-linux-debuginfo: before 2.33.2-4.36.1

libblkid-devel: before 2.33.2-4.36.1

util-linux-debugsource: before 2.33.2-4.36.1

External links

http://www.suse.com/support/update/announcement/2024/suse-su-20241171-1/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.