Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
util-linux: Malicious Hostname Can Bypass Security Controls
OESA-2026-1533
Summary
The util-linux package has a security flaw that can allow attackers to bypass security settings by manipulating hostnames. This could potentially allow unauthorized access to systems. To protect your system, update to the latest version of util-linux.
What to do
- Update util-linux to version 2.39.1-35.oe2403sp1.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| – | util-linux | <= 2.39.1-35.oe2403sp1 | 2.39.1-35.oe2403sp1 |
Original title
util-linux security update
Original description
The util-linux package contains a random collection of files that implements some low-level basic linux utilities.
Security Fix(es):
A vulnerability exists in util-linux package that allows access control bypass due to improper hostname canonicalization.(CVE-2026-3184)
Security Fix(es):
A vulnerability exists in util-linux package that allows access control bypass due to improper hostname canonicalization.(CVE-2026-3184)
- https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA... Vendor Advisory
- https://nvd.nist.gov/vuln/detail/CVE-2026-3184 Vendor Advisory
Published: 6 Mar 2026 · Updated: 6 Mar 2026 · First seen: 6 Mar 2026