{"id":"USN-8091-1","summary":"util-linux vulnerability","details":"It was discovered that the util-linux su utility did not drop capabilities\nwhen being used with the --pty option. While not a security issue by\nitself, a local attacker could possibly use the su tool to exploit\nvulnerabilities in other applications.","modified":"2026-04-22T11:07:02.475047Z","published":"2026-03-12T19:59:51Z","references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-8091-1"},{"type":"REPORT","url":"https://launchpad.net/bugs/2143850"}],"affected":[{"package":{"name":"util-linux","ecosystem":"Ubuntu:Pro:20.04:LTS","purl":"pkg:deb/ubuntu/util-linux@2.34-0.1ubuntu9.6+esm1?arch=source&distro=esm-infra/focal"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.34-0.1ubuntu9.6+esm1"}]}],"versions":["2.34-0.1ubuntu2","2.34-0.1ubuntu4","2.34-0.1ubuntu5","2.34-0.1ubuntu6","2.34-0.1ubuntu7","2.34-0.1ubuntu8","2.34-0.1ubuntu9","2.34-0.1ubuntu9.1","2.34-0.1ubuntu9.3","2.34-0.1ubuntu9.4","2.34-0.1ubuntu9.5","2.34-0.1ubuntu9.6"],"ecosystem_specific":{"availability":"Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro","binaries":[{"binary_name":"bsdutils","binary_version":"1:2.34-0.1ubuntu9.6+esm1"},{"binary_name":"fdisk","binary_version":"2.34-0.1ubuntu9.6+esm1"},{"binary_name":"libblkid1","binary_version":"2.34-0.1ubuntu9.6+esm1"},{"binary_name":"libfdisk1","binary_version":"2.34-0.1ubuntu9.6+esm1"},{"binary_name":"libmount1","binary_version":"2.34-0.1ubuntu9.6+esm1"},{"binary_name":"libsmartcols1","binary_version":"2.34-0.1ubuntu9.6+esm1"},{"binary_name":"libuuid1","binary_version":"2.34-0.1ubuntu9.6+esm1"},{"binary_name":"mount","binary_version":"2.34-0.1ubuntu9.6+esm1"},{"binary_name":"rfkill","binary_version":"2.34-0.1ubuntu9.6+esm1"},{"binary_name":"util-linux","binary_version":"2.34-0.1ubuntu9.6+esm1"},{"binary_name":"util-linux-locales","binary_version":"2.34-0.1ubuntu9.6+esm1"},{"binary_name":"uuid-runtime","binary_version":"2.34-0.1ubuntu9.6+esm1"}]},"database_specific":{"cves_map":{"cves":[],"ecosystem":"Ubuntu:Pro:20.04:LTS"},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8091-1.json"}},{"package":{"name":"util-linux","ecosystem":"Ubuntu:22.04:LTS","purl":"pkg:deb/ubuntu/util-linux@2.37.2-4ubuntu3.5?arch=source&distro=jammy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.37.2-4ubuntu3.5"}]}],"versions":["2.36.1-8ubuntu1","2.37.2-4ubuntu1","2.37.2-4ubuntu2","2.37.2-4ubuntu3","2.37.2-4ubuntu3.3","2.37.2-4ubuntu3.4"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_name":"bsdextrautils","binary_version":"2.37.2-4ubuntu3.5"},{"binary_name":"bsdutils","binary_version":"1:2.37.2-4ubuntu3.5"},{"binary_name":"eject","binary_version":"2.37.2-4ubuntu3.5"},{"binary_name":"fdisk","binary_version":"2.37.2-4ubuntu3.5"},{"binary_name":"libblkid1","binary_version":"2.37.2-4ubuntu3.5"},{"binary_name":"libfdisk1","binary_version":"2.37.2-4ubuntu3.5"},{"binary_name":"libmount1","binary_version":"2.37.2-4ubuntu3.5"},{"binary_name":"libsmartcols1","binary_version":"2.37.2-4ubuntu3.5"},{"binary_name":"libuuid1","binary_version":"2.37.2-4ubuntu3.5"},{"binary_name":"mount","binary_version":"2.37.2-4ubuntu3.5"},{"binary_name":"rfkill","binary_version":"2.37.2-4ubuntu3.5"},{"binary_name":"util-linux","binary_version":"2.37.2-4ubuntu3.5"},{"binary_name":"util-linux-locales","binary_version":"2.37.2-4ubuntu3.5"},{"binary_name":"uuid-runtime","binary_version":"2.37.2-4ubuntu3.5"}]},"database_specific":{"cves_map":{"cves":[],"ecosystem":"Ubuntu:22.04:LTS"},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8091-1.json"}},{"package":{"name":"util-linux","ecosystem":"Ubuntu:24.04:LTS","purl":"pkg:deb/ubuntu/util-linux@2.39.3-9ubuntu6.5?arch=source&distro=noble"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.39.3-9ubuntu6.5"}]}],"versions":["2.39.1-4ubuntu2","2.39.2-6ubuntu1","2.39.3-6ubuntu2","2.39.3-9ubuntu2","2.39.3-9ubuntu4","2.39.3-9ubuntu6","2.39.3-9ubuntu6.1","2.39.3-9ubuntu6.2","2.39.3-9ubuntu6.3","2.39.3-9ubuntu6.4"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_name":"bsdextrautils","binary_version":"2.39.3-9ubuntu6.5"},{"binary_name":"bsdutils","binary_version":"1:2.39.3-9ubuntu6.5"},{"binary_name":"eject","binary_version":"2.39.3-9ubuntu6.5"},{"binary_name":"fdisk","binary_version":"2.39.3-9ubuntu6.5"},{"binary_name":"libblkid1","binary_version":"2.39.3-9ubuntu6.5"},{"binary_name":"libfdisk1","binary_version":"2.39.3-9ubuntu6.5"},{"binary_name":"libmount1","binary_version":"2.39.3-9ubuntu6.5"},{"binary_name":"libsmartcols1","binary_version":"2.39.3-9ubuntu6.5"},{"binary_name":"libuuid1","binary_version":"2.39.3-9ubuntu6.5"},{"binary_name":"mount","binary_version":"2.39.3-9ubuntu6.5"},{"binary_name":"rfkill","binary_version":"2.39.3-9ubuntu6.5"},{"binary_name":"util-linux","binary_version":"2.39.3-9ubuntu6.5"},{"binary_name":"util-linux-extra","binary_version":"2.39.3-9ubuntu6.5"},{"binary_name":"util-linux-locales","binary_version":"2.39.3-9ubuntu6.5"},{"binary_name":"uuid-runtime","binary_version":"2.39.3-9ubuntu6.5"}]},"database_specific":{"cves_map":{"cves":[],"ecosystem":"Ubuntu:24.04:LTS"},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8091-1.json"}},{"package":{"name":"util-linux","ecosystem":"Ubuntu:25.10","purl":"pkg:deb/ubuntu/util-linux@2.41-4ubuntu4.2?arch=source&distro=questing"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.41-4ubuntu4.2"}]}],"versions":["2.40.2-14ubuntu1","2.41-4ubuntu2","2.41-4ubuntu3","2.41-4ubuntu4","2.41-4ubuntu4.1"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_name":"bsdextrautils","binary_version":"2.41-4ubuntu4.2"},{"binary_name":"bsdutils","binary_version":"1:2.41-4ubuntu4.2"},{"binary_name":"eject","binary_version":"2.41-4ubuntu4.2"},{"binary_name":"fdisk","binary_version":"2.41-4ubuntu4.2"},{"binary_name":"lastlog2","binary_version":"2.41-4ubuntu4.2"},{"binary_name":"libblkid1","binary_version":"2.41-4ubuntu4.2"},{"binary_name":"libfdisk1","binary_version":"2.41-4ubuntu4.2"},{"binary_name":"liblastlog2-2","binary_version":"2.41-4ubuntu4.2"},{"binary_name":"libmount1","binary_version":"2.41-4ubuntu4.2"},{"binary_name":"libpam-lastlog2","binary_version":"2.41-4ubuntu4.2"},{"binary_name":"libsmartcols1","binary_version":"2.41-4ubuntu4.2"},{"binary_name":"libuuid1","binary_version":"2.41-4ubuntu4.2"},{"binary_name":"login","binary_version":"1:4.16.0-2+really2.41-4ubuntu4.2"},{"binary_name":"mount","binary_version":"2.41-4ubuntu4.2"},{"binary_name":"rfkill","binary_version":"2.41-4ubuntu4.2"},{"binary_name":"util-linux","binary_version":"2.41-4ubuntu4.2"},{"binary_name":"util-linux-extra","binary_version":"2.41-4ubuntu4.2"},{"binary_name":"util-linux-locales","binary_version":"2.41-4ubuntu4.2"},{"binary_name":"uuid-runtime","binary_version":"2.41-4ubuntu4.2"}]},"database_specific":{"cves_map":{"cves":[],"ecosystem":"Ubuntu:25.10"},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8091-1.json"}}],"schema_version":"1.7.5"}