CVE-2018-7738

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2018-7738

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-7738.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2018-7738

Related

Published

2018-03-07T02:29:03Z

Modified

2025-01-08T10:20:47.442339Z

Severity

7.8 (High) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

In util-linux before 2.32-rc1, bash-completion/umount allows local users to gain privileges by embedding shell commands in a mountpoint name, which is mishandled during a umount command (within Bash) by a different user, as demonstrated by logging in as root and entering umount followed by a tab character for autocompletion.

References

Affected packages

Debian:11 / bash-completion

Package

Name: bash-completion
Purl: pkg:deb/debian/bash-completion?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1:2.*

1:2.11-2

1:2.11-3~exp1

1:2.11-3

1:2.11-4

1:2.11-5

1:2.11-6

1:2.11-7

1:2.11-8

1:2.12.0-1

1:2.13.0-1

1:2.14.0-1

1:2.14.0-2

1:2.16.0-1

Ecosystem specific

{
    "urgency": "unimportant"
}

Debian:12 / bash-completion

Package

Name: bash-completion
Purl: pkg:deb/debian/bash-completion?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1:2.*

1:2.11-6

1:2.11-7

1:2.11-8

1:2.12.0-1

1:2.13.0-1

1:2.14.0-1

1:2.14.0-2

1:2.16.0-1

Ecosystem specific

{
    "urgency": "unimportant"
}

Debian:13 / bash-completion

Package

Name: bash-completion
Purl: pkg:deb/debian/bash-completion?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1:2.*

1:2.11-6

1:2.11-7

1:2.11-8

1:2.12.0-1

1:2.13.0-1

1:2.14.0-1

1:2.14.0-2

1:2.16.0-1

Ecosystem specific

{
    "urgency": "unimportant"
}

Debian:11 / util-linux

Package

Name: util-linux
Purl: pkg:deb/debian/util-linux?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.31.1-0.5

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:12 / util-linux

Package

Name: util-linux
Purl: pkg:deb/debian/util-linux?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.31.1-0.5

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / util-linux

Package

Name: util-linux
Purl: pkg:deb/debian/util-linux?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.31.1-0.5

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Git / github.com/util-linux/util-linux

Affected ranges

Type: GIT
Repo: https://github.com/util-linux/util-linux
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

75f03badd7ed9f1dd951863d75e756883d3acc55

Fixed

75f03badd7ed9f1dd951863d75e756883d3acc55

Affected versions

v2.*

v2.10f

v2.10m

v2.10s

v2.11b

v2.11f

v2.11m

v2.11n

v2.11o

v2.11q

v2.11r

v2.11t

v2.11u

v2.11v

v2.11w

v2.11x

v2.11y

v2.12

v2.12a

v2.12b

v2.12d

v2.12h

v2.12i

v2.12j

v2.12k

v2.12l

v2.12m

v2.12o

v2.12p

v2.12pre

v2.12q

v2.12q-pre1

v2.12q-pre2

v2.12r

v2.12r-pre1

v2.13

v2.13-pre1

v2.13-pre2

v2.13-pre3

v2.13-pre4

v2.13-pre5

v2.13-pre6

v2.13-pre7

v2.13-rc1

v2.13-rc2

v2.13-rc3

v2.14

v2.14-rc1

v2.14-rc2

v2.14-rc3

v2.15

v2.15-rc1

v2.15-rc2

v2.16

v2.16-rc1

v2.16-rc2

v2.17

v2.17-rc1

v2.17-rc2

v2.17-rc3

v2.18

v2.18-rc1

v2.18-rc2

v2.19

v2.19-rc1

v2.19-rc2

v2.19-rc3

v2.2

v2.20

v2.20-rc1

v2.20-rc2

v2.21

v2.21-rc1

v2.21-rc2

v2.22

v2.22-rc1

v2.22-rc2

v2.23

v2.23-rc1

v2.23-rc2

v2.24

v2.24-rc1

v2.24-rc2

v2.25

v2.25-rc1

v2.25-rc2

v2.26

v2.26-rc1

v2.26-rc2

v2.27

v2.27-rc1

v2.27-rc2

v2.28

v2.28-rc1

v2.28-rc2

v2.29

v2.29-rc1

v2.29-rc2

v2.30

v2.30-rc1

v2.30-rc2

v2.31

v2.31-rc1

v2.31-rc2

v2.5

v2.7.1

v2.8

v2.9i

v2.9v