CVE-2011-1089

Priority
Description
The addmntent function in the GNU C Library (aka glibc or libc6) 2.13 and
earlier does not report an error status for failed attempts to write to the
/etc/mtab file, which makes it easier for local users to trigger corruption
of this file, as demonstrated by writes from a process with a small
RLIMIT_FSIZE value, a different vulnerability than CVE-2010-0296.
Assigned-to
sbeattie
Package
Source: glibc (LP Ubuntu Debian)
Upstream:needs-triage
Patches:
Vendor:https://rhn.redhat.com/errata/RHSA-2011-1526.html
More Information

Updated: 2019-03-19 11:57:30 UTC (commit 15472795df7e9de45b82f2d36b8b419b939f97b2)