util-linux Heap Buffer Overread Vulnerability in SUID Login-Utils

Vulnerability

A heap buffer overread vulnerability has been identified in util-linux, specifically within the setpwnam() function. This issue arises when processing 256-byte usernames, leading to a heap buffer overread. The vulnerability affects SUID (Set User ID) login-utils utilities that write to the password database.

Impact

Exploitation of this vulnerability causes a heap buffer overread, which can lead to a segmentation fault or crash by causing memory to be read outside the bounds of the buffer. This is particularly likely when the code reads a variable amount of data and assumes a sentinel, such as a NUL in a string, will stop the read operation.

Added: Dec 5, 2025, 5:29 PM

Updated: Dec 5, 2025, 5:29 PM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

3.3

remediation

0.0

relevance

1.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

3.3

remediation

0.0

relevance

1.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

util-linux Heap Buffer Overread Vulnerability in SUID Login-Utils

Vulnerability

Impact

Affected Products

util-linux

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating