VDB

GCVE-VVD-MAGEIA-2017-72

GCVE-VVD-MAGEIA-2017-72
Advisory Published
Vulnetix · Advisory published September 1, 2017
With the su command from util-linux before 2.29.2, it is possible for any local user to send SIGKILL to other processes with root privileges. To exploit this, the user must be able to perform su with a successful login. SIGKILL can only be sent to processes which were executed after the su process. It is not possible to send SIGKILL to processes which were already running (CVE-2017-2616).
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiakdelibs40 (affected), 4.14.35-1.mga6 (unaffected)
Mageiautil-linux0 (affected), 2.25.2-3.5.mga5 (unaffected), 0 (affected), 2.25.2-3.5.mga5 (unaffected)

References

Updated util-linux packages fix security vulnerability
advisory
Updated util-linux packages fix security vulnerability
issue
Updated util-linux packages fix security vulnerability
issue
Updated kdelibs4 packages bring it current with Mageia 5
advisory
Updated kdelibs4 packages bring it current with Mageia 5
issue

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›