debian · CVE-2007-5191

Quick triage

Priority: low 公開: Updated: Sun, 05 Jul 2026 03:42:00 GMT

参照: Official debian advisory, NVD, CVE.org · CVE 詳細

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2007-5191 low priority: Debian including 1 source packages (util-linux), 5 status rows across 5 suites (bookworm, bullseye, forky, sid, trixie): resolved 5.

Description:

mount and umount in util-linux and loop-aes-utils call the setuid and setgid functions in the wrong order and do not check the return values, which might allow attackers to gain privileges via helpers such as mount.nfs.

cvelogic Threat Intelligence