CVE-2011-1089 (retired)

Priority
Description
The addmntent function in the GNU C Library (aka glibc or libc6) 2.13 and
earlier does not report an error status for failed attempts to write to the
/etc/mtab file, which makes it easier for local users to trigger corruption
of this file, as demonstrated by writes from a process with a small
RLIMIT_FSIZE value, a different vulnerability than CVE-2010-0296.
Assigned-to
sbeattie
Package
Source: glibc (LP Ubuntu Debian)
Upstream:needs-triage
Patches:
Vendor:https://rhn.redhat.com/errata/RHSA-2011-1526.html
More Information

Updated: 2019-09-19 15:35:42 UTC (commit d32ebc32606b9517c6fa7d65a15441e2a57a6de5)