Candidate: CVE-2014-9114
PublicDate: 2017-03-31 16:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9114
 http://www.openwall.com/lists/oss-security/2014/11/26/13
Description:
 Blkid in util-linux before 2.26rc-1 allows local users to execute arbitrary
 code.
Ubuntu-Description:
Notes:
Bugs:
 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=771274
Priority: low
Discovered-by: Sebastian Krahmer
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H [7.8 HIGH]

Patches_util-linux:
 upstream: https://github.com/karelzak/util-linux/commit/89e90ae7b2826110ea28c1c0eb8e7c56c3907bdc
upstream_util-linux: released (2.25.2-4)
lucid_util-linux: ignored (reached end-of-life)
precise_util-linux: ignored (reached end-of-life)
precise/esm_util-linux: ignored (end of ESM support, was needed)
trusty_util-linux: ignored (reached end-of-life)
trusty/esm_util-linux: needed
utopic_util-linux: ignored (reached end-of-life)
vivid_util-linux: not-affected (2.25.2-4ubuntu2)
vivid/stable-phone-overlay_util-linux: not-affected (2.25.2-4ubuntu2)
vivid/ubuntu-core_util-linux: not-affected (2.25.2-4ubuntu2)
wily_util-linux: not-affected (2.26.2-6ubuntu1)
xenial_util-linux: not-affected (2.26.2-6ubuntu1)
esm-infra/xenial_util-linux: not-affected (2.26.2-6ubuntu1)
yakkety_util-linux: not-affected (2.26.2-6ubuntu1)
zesty_util-linux: not-affected (2.26.2-6ubuntu1)
artful_util-linux: not-affected (2.26.2-6ubuntu1)
bionic_util-linux: not-affected (2.26.2-6ubuntu1)
cosmic_util-linux: not-affected (2.26.2-6ubuntu1)
disco_util-linux: not-affected (2.26.2-6ubuntu1)
eoan_util-linux: not-affected (2.26.2-6ubuntu1)
focal_util-linux: not-affected (2.26.2-6ubuntu1)
groovy_util-linux: not-affected (2.26.2-6ubuntu1)
hirsute_util-linux: not-affected (2.26.2-6ubuntu1)
impish_util-linux: not-affected (2.26.2-6ubuntu1)
jammy_util-linux: not-affected (2.26.2-6ubuntu1)
devel_util-linux: not-affected (2.26.2-6ubuntu1)