CVE-2017-2616 Red Hat Update for util-linux Security (RHSA-2017:0907)

The util-linux packages contain a large variety of low-level system utilities that are necessary for a Linux system to function.

A race condition was found in the way su handled the management of child processes. A local authenticated attacker could use this flaw to kill other processes with root privileges under specific conditions. (CVE-2017-2616)

A local authenticated attacker could use this flaw to kill other processes with root privileges under specific conditions.

Upgrade to the latest packages which contain a patch. Refer to Applying Package Updates to RHEL system for details.

Refer to Red Hat security advisory RHSA-2017:0907 to address this issue and obtain more information.

Patch:
Following are links for downloading patches to fix the vulnerabilities:

RHSA-2017:0907: Red Hat Enterprise Linux