{"id":"JLSEC-2025-193","summary":"A logic error was found in the libmount library of util-linux in the function that allows an unprivi...","details":"A logic error was found in the libmount library of util-linux in the function that allows an unprivileged user to unmount a FUSE filesystem. This flaw allows a local user on a vulnerable system to unmount other users' filesystems that are either world-writable themselves (like /tmp) or mounted in a world-writable directory. An attacker may use this flaw to cause a denial of service to applications that use the affected filesystems.","modified":"2025-11-06T23:02:56.003130Z","published":"2025-10-27T18:23:36.019Z","upstream":["CVE-2021-3996"],"database_specific":{"license":"CC-BY-4.0","sources":[{"html_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-3996","id":"CVE-2021-3996","url":"https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2021-3996","published":"2022-08-23T20:15:08.560Z","modified":"2024-11-21T06:23:20.377Z","imported":"2025-10-27T15:41:00.912Z"}]},"references":[{"type":"WEB","url":"http://packetstormsecurity.com/files/170176/snap-confine-must_mkdir_and_open_with_perms-Race-Condition.html"},{"type":"WEB","url":"http://seclists.org/fulldisclosure/2022/Dec/4"},{"type":"WEB","url":"http://www.openwall.com/lists/oss-security/2022/11/30/2"},{"type":"WEB","url":"https://access.redhat.com/security/cve/CVE-2021-3996"},{"type":"WEB","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2024628"},{"type":"WEB","url":"https://github.com/util-linux/util-linux/commit/166e87368ae88bf31112a30e078cceae637f4cdb"},{"type":"WEB","url":"https://mirrors.edge.kernel.org/pub/linux/utils/util-linux/v2.37/v2.37.3-ReleaseNotes"},{"type":"WEB","url":"https://security.gentoo.org/glsa/202401-08"},{"type":"WEB","url":"https://security.netapp.com/advisory/ntap-20221209-0002/"},{"type":"WEB","url":"https://www.openwall.com/lists/oss-security/2022/01/24/2"}],"affected":[{"package":{"name":"util_linux_jll","ecosystem":"Julia","purl":"pkg:julia/util_linux_jll?uuid=a762b42e-dc87-5958-a639-9c9eec9c0153"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"},{"fixed":"2.39.3+0"}]}],"database_specific":{"source":"https://github.com/JuliaLang/SecurityAdvisories.jl/tree/generated/osv/2025/JLSEC-2025-193.json"}},{"package":{"name":"Libuuid_jll","ecosystem":"Julia","purl":"pkg:julia/Libuuid_jll?uuid=38a345b3-de98-5d2b-a5d3-14cd9215e700"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"},{"fixed":"2.39.3+0"}]}],"database_specific":{"source":"https://github.com/JuliaLang/SecurityAdvisories.jl/tree/generated/osv/2025/JLSEC-2025-193.json"}},{"package":{"name":"Libmount_jll","ecosystem":"Julia","purl":"pkg:julia/Libmount_jll?uuid=4b2f31a3-9ecc-558c-b454-b3730dcb73e9"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"},{"fixed":"2.39.3+0"}]}],"database_specific":{"source":"https://github.com/JuliaLang/SecurityAdvisories.jl/tree/generated/osv/2025/JLSEC-2025-193.json"}}],"schema_version":"1.7.3"}