Ubuntu 22.04 LTS 8091-1 util-linux Important Privilege Escalation Risk
Mar 12, 2026
•
LinuxSecurity Advisories
1 - 2 min read
Topics Covered
util-linux could be made to run programs as an administrator.
==========================================================================
Ubuntu Security Notice USN-8091-1
March 12, 2026
util-linux vulnerability
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 25.10
- Ubuntu 24.04 LTS
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS
Summary:
util-linux could be made to run programs as an administrator.
Software Description:
- util-linux: miscellaneous system utilities
Details:
It was discovered that the util-linux su utility did not drop capabilities
when being used with the --pty option. While not a security issue by
itself, a local attacker could possibly use the su tool to exploit
vulnerabilities in other applications.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 25.10
util-linux 2.41-4ubuntu4.2
Ubuntu 24.04 LTS
util-linux 2.39.3-9ubuntu6.5
Ubuntu 22.04 LTS
util-linux 2.37.2-4ubuntu3.5
Ubuntu 20.04 LTS
util-linux 2.34-0.1ubuntu9.6+esm1
Available with Ubuntu Pro
In general, a standard system update will make all the necessary changes.
References:
https://ubuntu.com/security/notices/USN-8091-1
https://launchpad.net/bugs/2143850
Package Information:
https://launchpad.net/ubuntu/+source/util-linux/2.41-4ubuntu4.2
https://launchpad.net/ubuntu/+source/util-linux/2.39.3-9ubuntu6.5
https://launchpad.net/ubuntu/+source/util-linux/2.37.2-4ubuntu3.5
PREVIOUS
NEXT
Ubuntu 22.04 LTS 8091-1 util-linux Important Privilege Escalation Risk
ubuntu
March 12, 2026
util-linux could be made to run programs as an administrator.
Summary
A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 25.10 - Ubuntu 24.04 LTS - Ubuntu 22.04 LTS - Ubuntu 20.04 LTS Summary: util-linux could be made to run programs as an administrator. Software Description: - util-linux: miscellaneous system utilities Details: It was discovered that the util-linux su utility did not drop capabilities when being used with the --pty option. While not a security issue by itself, a local attacker could possibly use the su tool to exploit vulnerabilities in other applications.
Topics Covered
Update Instructions
The problem can be corrected by updating your system to the following package versions: Ubuntu 25.10 util-linux 2.41-4ubuntu4.2 Ubuntu 24.04 LTS util-linux 2.39.3-9ubuntu6.5 Ubuntu 22.04 LTS util-linux 2.37.2-4ubuntu3.5 Ubuntu 20.04 LTS util-linux 2.34-0.1ubuntu9.6+esm1 Available with Ubuntu Pro In general, a standard system update will make all the necessary changes.
References
https://ubuntu.com/security/notices/USN-8091-1
https://launchpad.net/bugs/2143850
Severity
important
Lowest
Low
Medium
High
Critical
Ubuntu Security Notice USN-8091-1
Topics Covered
Package Information
https://launchpad.net/ubuntu/+source/util-linux/2.41-4ubuntu4.2 https://launchpad.net/ubuntu/+source/util-linux/2.39.3-9ubuntu6.5 https://launchpad.net/ubuntu/+source/util-linux/2.37.2-4ubuntu3.5
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!