PT-2015-7820 · Linux+3 · Linux Kernel+3

Jann Horn

·

Publicado

2015-12-12

·

Atualizado

2024-08-06

·

CVE-2015-8709

CVSS v3.1

7.0

Alta

VetorAV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions through 4.4.1
Description The Linux kernel mishandles uid and gid mappings, which allows local users to gain privileges by establishing a user namespace, waiting for a root process to enter that namespace with an unsafe uid or gid, and then using the ptrace system call. The vendor states that there is no kernel bug.
Recommendations For Linux kernel versions through 4.4.1, consider updating to a version later than 4.4.1 to resolve the issue. As a temporary workaround, consider restricting the use of the ptrace system call to minimize the risk of exploitation. Additionally, be cautious when using user namespaces and ensure that uid and gid mappings are handled safely.

Exploit

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-264

Identificadores relacionados

ALT-PU-2016-1137
ALT-PU-2016-1485
CVE-2015-8709
DSA-3434-1
OPENSUSE-SU-2016_1008-1
OPENSUSE-SU-2016_2144-1
OPENSUSE-SU-2017_0456-1
SUSE-SU-2016:0785-1
SUSE-SU-2016:1019-1
SUSE-SU-2016:1031-1
SUSE-SU-2016:1032-1
SUSE-SU-2016:1033-1
SUSE-SU-2016:1034-1
SUSE-SU-2016:1035-1
SUSE-SU-2016:1037-1
SUSE-SU-2016:1038-1
SUSE-SU-2016:1039-1
SUSE-SU-2016:1040-1
SUSE-SU-2016:1041-1
SUSE-SU-2016:1045-1
SUSE-SU-2016:1046-1
SUSE-SU-2016:1764-1
SUSE-SU-2017:0575-1
SUSE-SU-2017_0575-1
USN-2847-1
USN-2848-1
USN-2849-1
USN-2850-1
USN-2851-1
USN-2852-1
USN-2853-1
USN-2854-1

Produtos afetados

Alt Linux
Linux Kernel
Suse
Ubuntu