CVE-2010-0296

EUVD-2010-0327
The encode_name macro in misc/mntent_r.c in the GNU C Library (aka glibc or libc6) 2.11.1 and earlier, as used by ncpmount and mount.cifs, does not properly handle newline characters in mountpoint names, which allows local users to cause a denial of service (mtab corruption), or possibly modify mount options and gain privileges, via a crafted mount request.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.2 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 30%
Affected Products (NVD)
VendorProductVersion
gnuglibc
𝑥
≤ 2.11.1
gnuglibc
2.0
gnuglibc
2.0.1
gnuglibc
2.0.2
gnuglibc
2.0.3
gnuglibc
2.0.4
gnuglibc
2.0.5
gnuglibc
2.0.6
gnuglibc
2.1
gnuglibc
2.1.1
gnuglibc
2.1.1.6
gnuglibc
2.1.2
gnuglibc
2.1.3
gnuglibc
2.1.9
gnuglibc
2.2
gnuglibc
2.2.1
gnuglibc
2.2.2
gnuglibc
2.2.3
gnuglibc
2.2.4
gnuglibc
2.2.5
gnuglibc
2.3
gnuglibc
2.3.1
gnuglibc
2.3.2
gnuglibc
2.3.3
gnuglibc
2.3.4
gnuglibc
2.3.5
gnuglibc
2.3.6
gnuglibc
2.3.10
gnuglibc
2.4
gnuglibc
2.5
gnuglibc
2.5.1
gnuglibc
2.6
gnuglibc
2.6.1
gnuglibc
2.7
gnuglibc
2.8
gnuglibc
2.9
gnuglibc
2.10
gnuglibc
2.10.1
gnuglibc
2.11
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
glibc
bookworm
2.36-9+deb12u8
fixed
bookworm (security)
2.36-9+deb12u7
fixed
bullseye
2.31-13+deb11u11
fixed
bullseye (security)
2.31-13+deb11u10
fixed
sid
2.40-3
fixed
trixie
2.40-3
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
eglibc
dapper
dne
hardy
dne
intrepid
dne
jaunty
dne
karmic
Fixed 2.10.1-0ubuntu17
released
lucid
Fixed 2.11.1-0ubuntu7.1
released
glibc
dapper
Fixed 2.3.6-0ubuntu20.6
released
hardy
Fixed 2.7-10ubuntu6
released
intrepid
ignored
jaunty
Fixed 2.9-4ubuntu6.2
released
karmic
dne
lucid
dne
Common Weakness Enumeration
References
http://frugalware.org/security/662
http://packetstormsecurity.com/files/153278/WAGO-852-Industrial-Managed-Switch-Series-Code-Execution-Hardcoded-Credentials.html
http://seclists.org/fulldisclosure/2019/Jun/18
http://secunia.com/advisories/39900
http://secunia.com/advisories/43830
http://secunia.com/advisories/46397
http://security.gentoo.org/glsa/glsa-201011-01.xml
http://securitytracker.com/id?1024043
http://sourceware.org/git/?p=glibc.git%3Ba=commit%3Bh=ab00f4eac8f4932211259ff87be83144f5211540
http://www.debian.org/security/2010/dsa-2058
http://www.mandriva.com/security/advisories?name=MDVSA-2010:111
http://www.mandriva.com/security/advisories?name=MDVSA-2010:112
http://www.redhat.com/support/errata/RHSA-2011-0412.html
http://www.securityfocus.com/archive/1/520102/100/0/threaded
http://www.ubuntu.com/usn/USN-944-1
http://www.vmware.com/security/advisories/VMSA-2011-0012.html
http://www.vupen.com/english/advisories/2010/1246
http://www.vupen.com/english/advisories/2011/0863
https://bugzilla.redhat.com/show_bug.cgi?id=559579
https://exchange.xforce.ibmcloud.com/vulnerabilities/59240
https://lists.opensuse.org/opensuse-security-announce/2010-10/msg00007.html
https://seclists.org/bugtraq/2019/Jun/14
http://frugalware.org/security/662
http://packetstormsecurity.com/files/153278/WAGO-852-Industrial-Managed-Switch-Series-Code-Execution-Hardcoded-Credentials.html
http://seclists.org/fulldisclosure/2019/Jun/18
http://secunia.com/advisories/39900
http://secunia.com/advisories/43830
http://secunia.com/advisories/46397
http://security.gentoo.org/glsa/glsa-201011-01.xml
http://securitytracker.com/id?1024043
http://sourceware.org/git/?p=glibc.git%3Ba=commit%3Bh=ab00f4eac8f4932211259ff87be83144f5211540
http://www.debian.org/security/2010/dsa-2058
http://www.mandriva.com/security/advisories?name=MDVSA-2010:111
http://www.mandriva.com/security/advisories?name=MDVSA-2010:112
http://www.redhat.com/support/errata/RHSA-2011-0412.html
http://www.securityfocus.com/archive/1/520102/100/0/threaded
http://www.ubuntu.com/usn/USN-944-1
http://www.vmware.com/security/advisories/VMSA-2011-0012.html
http://www.vupen.com/english/advisories/2010/1246
http://www.vupen.com/english/advisories/2011/0863
https://bugzilla.redhat.com/show_bug.cgi?id=559579
https://exchange.xforce.ibmcloud.com/vulnerabilities/59240
https://lists.opensuse.org/opensuse-security-announce/2010-10/msg00007.html
https://seclists.org/bugtraq/2019/Jun/14