#CVE202428085

‘WallEscape’ Linux Vulnerability Leaks User Passwords

by

April 1, 2024 at 12:30PM Security researchers have disclosed a new vulnerability, named CVE-2024-28085 or ‘WallEscape’, affecting the ‘wall’ command in the util-linux package on Linux systems. Exploiting this flaw could potentially leak user passwords and manipulate the clipboard. This security defect impacts Ubuntu 22.04 and Debian Bookworm, with potential for account takeover, but does … Read more

New Linux Bug Could Lead to User Password Leaks and Clipboard Hijacking

by

March 29, 2024 at 07:09AM A vulnerability in the “wall” command of the util-linux package, tracked as CVE-2024-28085, allows unprivileged users to manipulate other users’ terminals on certain Linux distributions. This could lead to password leaks or clipboard alteration. Users are advised to update to util-linux version 2.40 to address this issue. Another vulnerability, CVE-2024-1086, … Read more