GCVE-VVD-MAGEIA-2017-72

Advisory Published

Vulnetix · Advisory published September 1, 2017

With the su command from util-linux before 2.29.2, it is possible for any local user to send SIGKILL to other processes with root privileges. To exploit this, the user must be able to perform su with a successful login. SIGKILL can only be sent to processes which were executed after the su process. It is not possible to send SIGKILL to processes which were already running (CVE-2017-2616).

Download JSON Open in Console

Affected Products

Vendor	Product	Versions	Platforms
Mageia	kdelibs4	0 (affected), 4.14.35-1.mga6 (unaffected)	—
Mageia	util-linux	0 (affected), 2.25.2-3.5.mga5 (unaffected), 0 (affected), 2.25.2-3.5.mga5 (unaffected)	—

References

Updated util-linux packages fix security vulnerability

advisory

Updated util-linux packages fix security vulnerability

issue

Updated util-linux packages fix security vulnerability

issue

Updated kdelibs4 packages bring it current with Mageia 5

advisory

Updated kdelibs4 packages bring it current with Mageia 5

issue

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON