CVE-2011-1677

Description

mount in util-linux 2.19 and earlier does not remove the /etc/mtab~ lock file after a failed attempt to add a mount entry, which has unspecified impact and local attack vectors.

How to fix CVE-2011-1677

To remediate CVE-2011-1677, upgrade the affected package to a fixed version below.

• Debian/util-linux—upgrade to 2.20.1-1 or later

Is CVE-2011-1677 being exploited?

Low — EPSS is 0.0%, meaning exploitation activity has not been observed at scale.

Affected packages (1)

• from 0, < 2.20.1-1

References (1)

• ADVISORYsecurity-tracker.debian.org/tracker/CVE-2011-1677