Vulnerability-Lookup

CVE-2015-8709 (GCVE-0-2015-8709)

Vulnerability from cvelistv5 – Published: 2016-02-08 02:00 – Updated: 2024-08-06 08:29 Disputed

Summary

kernel/ptrace.c in the Linux kernel through 4.4.1 mishandles uid and gid mappings, which allows local users to gain privileges by establishing a user namespace, waiting for a root process to enter that namespace with an unsafe uid or gid, and then using the ptrace system call. NOTE: the vendor states "there is no kernel bug here.

Severity ?

No CVSS data available.

CWE

Assigner

debian

References

URL

Tags

	http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
	http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
	http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
	https://lkml.org/lkml/2015/12/25/71	mailing-listx_refsource_MLIST
	http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
	http://marc.info/?l=linux-kernel&m=145204641422813&w=2	mailing-listx_refsource_MLIST
	http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
	http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
	http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
	http://www.openwall.com/lists/oss-security/2015/12/31/5	mailing-listx_refsource_MLIST
	http://www.openwall.com/lists/oss-security/2015/1…	mailing-listx_refsource_MLIST
	http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
	http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
	http://marc.info/?l=linux-kernel&m=145204362722256&w=2	mailing-listx_refsource_MLIST
	http://lists.fedoraproject.org/pipermail/package-…	vendor-advisoryx_refsource_FEDORA
	http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
	http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
	http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
	http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
	http://www.securityfocus.com/bid/79899	vdb-entryx_refsource_BID
	http://www.securitytracker.com/id/1034899	vdb-entryx_refsource_SECTRACK
	http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
	https://bugzilla.redhat.com/show_bug.cgi?id=1295287	x_refsource_CONFIRM
	http://www.debian.org/security/2016/dsa-3434	vendor-advisoryx_refsource_DEBIAN
	http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T08:29:20.934Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "SUSE-SU-2016:1038",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00031.html"
          },
          {
            "name": "SUSE-SU-2016:1033",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00027.html"
          },
          {
            "name": "SUSE-SU-2016:1034",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00028.html"
          },
          {
            "name": "[linux-kernel] 20151226 [PATCH] ptrace: being capable wrt a process requires mapped uids/gids",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lkml.org/lkml/2015/12/25/71"
          },
          {
            "name": "SUSE-SU-2016:1035",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00029.html"
          },
          {
            "name": "[linux-kernel] 20160106 Re: [PATCH] ptrace: being capable wrt a process requires mapped uids/gids",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://marc.info/?l=linux-kernel\u0026m=145204641422813\u0026w=2"
          },
          {
            "name": "SUSE-SU-2016:1764",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00005.html"
          },
          {
            "name": "SUSE-SU-2016:1031",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00025.html"
          },
          {
            "name": "SUSE-SU-2016:1019",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00019.html"
          },
          {
            "name": "[oss-security] 20151231 Re: CVE Request: Linux kernel: privilege escalation in user namespaces",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2015/12/31/5"
          },
          {
            "name": "[oss-security] 20151217 CVE Request: Linux kernel: privilege escalation in user namespaces",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2015/12/17/12"
          },
          {
            "name": "SUSE-SU-2016:1037",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00030.html"
          },
          {
            "name": "SUSE-SU-2016:1045",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00036.html"
          },
          {
            "name": "[linux-kernel] 20160106 Re: [PATCH] ptrace: being capable wrt a process requires mapped uids/gids",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://marc.info/?l=linux-kernel\u0026m=145204362722256\u0026w=2"
          },
          {
            "name": "FEDORA-2016-5d43766e33",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2016-February/176484.html"
          },
          {
            "name": "SUSE-SU-2016:1032",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00026.html"
          },
          {
            "name": "SUSE-SU-2016:1039",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00032.html"
          },
          {
            "name": "SUSE-SU-2016:1041",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00034.html"
          },
          {
            "name": "SUSE-SU-2016:1046",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00037.html"
          },
          {
            "name": "79899",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/79899"
          },
          {
            "name": "1034899",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1034899"
          },
          {
            "name": "openSUSE-SU-2016:1008",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00015.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1295287"
          },
          {
            "name": "DSA-3434",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2016/dsa-3434"
          },
          {
            "name": "SUSE-SU-2016:1040",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00033.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2015-12-17T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "kernel/ptrace.c in the Linux kernel through 4.4.1 mishandles uid and gid mappings, which allows local users to gain privileges by establishing a user namespace, waiting for a root process to enter that namespace with an unsafe uid or gid, and then using the ptrace system call.  NOTE: the vendor states \"there is no kernel bug here."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-11-03T18:57:01.000Z",
        "orgId": "79363d38-fa19-49d1-9214-5f28da3f3ac5",
        "shortName": "debian"
      },
      "references": [
        {
          "name": "SUSE-SU-2016:1038",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00031.html"
        },
        {
          "name": "SUSE-SU-2016:1033",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00027.html"
        },
        {
          "name": "SUSE-SU-2016:1034",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00028.html"
        },
        {
          "name": "[linux-kernel] 20151226 [PATCH] ptrace: being capable wrt a process requires mapped uids/gids",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lkml.org/lkml/2015/12/25/71"
        },
        {
          "name": "SUSE-SU-2016:1035",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00029.html"
        },
        {
          "name": "[linux-kernel] 20160106 Re: [PATCH] ptrace: being capable wrt a process requires mapped uids/gids",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://marc.info/?l=linux-kernel\u0026m=145204641422813\u0026w=2"
        },
        {
          "name": "SUSE-SU-2016:1764",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00005.html"
        },
        {
          "name": "SUSE-SU-2016:1031",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00025.html"
        },
        {
          "name": "SUSE-SU-2016:1019",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00019.html"
        },
        {
          "name": "[oss-security] 20151231 Re: CVE Request: Linux kernel: privilege escalation in user namespaces",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2015/12/31/5"
        },
        {
          "name": "[oss-security] 20151217 CVE Request: Linux kernel: privilege escalation in user namespaces",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2015/12/17/12"
        },
        {
          "name": "SUSE-SU-2016:1037",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00030.html"
        },
        {
          "name": "SUSE-SU-2016:1045",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00036.html"
        },
        {
          "name": "[linux-kernel] 20160106 Re: [PATCH] ptrace: being capable wrt a process requires mapped uids/gids",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://marc.info/?l=linux-kernel\u0026m=145204362722256\u0026w=2"
        },
        {
          "name": "FEDORA-2016-5d43766e33",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2016-February/176484.html"
        },
        {
          "name": "SUSE-SU-2016:1032",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00026.html"
        },
        {
          "name": "SUSE-SU-2016:1039",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00032.html"
        },
        {
          "name": "SUSE-SU-2016:1041",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00034.html"
        },
        {
          "name": "SUSE-SU-2016:1046",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00037.html"
        },
        {
          "name": "79899",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/79899"
        },
        {
          "name": "1034899",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1034899"
        },
        {
          "name": "openSUSE-SU-2016:1008",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00015.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1295287"
        },
        {
          "name": "DSA-3434",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2016/dsa-3434"
        },
        {
          "name": "SUSE-SU-2016:1040",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00033.html"
        }
      ],
      "tags": [
        "disputed"
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security@debian.org",
          "ID": "CVE-2015-8709",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "** DISPUTED ** kernel/ptrace.c in the Linux kernel through 4.4.1 mishandles uid and gid mappings, which allows local users to gain privileges by establishing a user namespace, waiting for a root process to enter that namespace with an unsafe uid or gid, and then using the ptrace system call.  NOTE: the vendor states \"there is no kernel bug here.\""
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "SUSE-SU-2016:1038",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00031.html"
            },
            {
              "name": "SUSE-SU-2016:1033",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00027.html"
            },
            {
              "name": "SUSE-SU-2016:1034",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00028.html"
            },
            {
              "name": "[linux-kernel] 20151226 [PATCH] ptrace: being capable wrt a process requires mapped uids/gids",
              "refsource": "MLIST",
              "url": "https://lkml.org/lkml/2015/12/25/71"
            },
            {
              "name": "SUSE-SU-2016:1035",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00029.html"
            },
            {
              "name": "[linux-kernel] 20160106 Re: [PATCH] ptrace: being capable wrt a process requires mapped uids/gids",
              "refsource": "MLIST",
              "url": "http://marc.info/?l=linux-kernel\u0026m=145204641422813\u0026w=2"
            },
            {
              "name": "SUSE-SU-2016:1764",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00005.html"
            },
            {
              "name": "SUSE-SU-2016:1031",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00025.html"
            },
            {
              "name": "SUSE-SU-2016:1019",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00019.html"
            },
            {
              "name": "[oss-security] 20151231 Re: CVE Request: Linux kernel: privilege escalation in user namespaces",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2015/12/31/5"
            },
            {
              "name": "[oss-security] 20151217 CVE Request: Linux kernel: privilege escalation in user namespaces",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2015/12/17/12"
            },
            {
              "name": "SUSE-SU-2016:1037",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00030.html"
            },
            {
              "name": "SUSE-SU-2016:1045",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00036.html"
            },
            {
              "name": "[linux-kernel] 20160106 Re: [PATCH] ptrace: being capable wrt a process requires mapped uids/gids",
              "refsource": "MLIST",
              "url": "http://marc.info/?l=linux-kernel\u0026m=145204362722256\u0026w=2"
            },
            {
              "name": "FEDORA-2016-5d43766e33",
              "refsource": "FEDORA",
              "url": "http://lists.fedoraproject.org/pipermail/package-announce/2016-February/176484.html"
            },
            {
              "name": "SUSE-SU-2016:1032",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00026.html"
            },
            {
              "name": "SUSE-SU-2016:1039",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00032.html"
            },
            {
              "name": "SUSE-SU-2016:1041",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00034.html"
            },
            {
              "name": "SUSE-SU-2016:1046",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00037.html"
            },
            {
              "name": "79899",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/79899"
            },
            {
              "name": "1034899",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1034899"
            },
            {
              "name": "openSUSE-SU-2016:1008",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00015.html"
            },
            {
              "name": "https://bugzilla.redhat.com/show_bug.cgi?id=1295287",
              "refsource": "CONFIRM",
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1295287"
            },
            {
              "name": "DSA-3434",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2016/dsa-3434"
            },
            {
              "name": "SUSE-SU-2016:1040",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00033.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "79363d38-fa19-49d1-9214-5f28da3f3ac5",
    "assignerShortName": "debian",
    "cveId": "CVE-2015-8709",
    "datePublished": "2016-02-08T02:00:00.000Z",
    "dateReserved": "2015-12-31T00:00:00.000Z",
    "dateUpdated": "2024-08-06T08:29:20.934Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

FKIE_CVE-2015-8709

Vulnerability from fkie_nvd - Published: 2016-02-08 03:59 - Updated: 2025-04-12 10:46

Severity ?

7.0 (High) - CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Summary

References

	URL	Tags
	security@debian.org	http://lists.fedoraproject.org/pipermail/package-announce/2016-February/176484.html
	security@debian.org	http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00015.html
	security@debian.org	http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00019.html
	security@debian.org	http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00025.html
	security@debian.org	http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00026.html
	security@debian.org	http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00027.html
	security@debian.org	http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00028.html
	security@debian.org	http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00029.html
	security@debian.org	http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00030.html
	security@debian.org	http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00031.html
	security@debian.org	http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00032.html
	security@debian.org	http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00033.html
	security@debian.org	http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00034.html
	security@debian.org	http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00036.html
	security@debian.org	http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00037.html
	security@debian.org	http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00005.html
	security@debian.org	http://marc.info/?l=linux-kernel&m=145204362722256&w=2
	security@debian.org	http://marc.info/?l=linux-kernel&m=145204641422813&w=2
	security@debian.org	http://www.debian.org/security/2016/dsa-3434
	security@debian.org	http://www.openwall.com/lists/oss-security/2015/12/17/12
	security@debian.org	http://www.openwall.com/lists/oss-security/2015/12/31/5
	security@debian.org	http://www.securityfocus.com/bid/79899
	security@debian.org	http://www.securitytracker.com/id/1034899
	security@debian.org	https://bugzilla.redhat.com/show_bug.cgi?id=1295287
	security@debian.org	https://lkml.org/lkml/2015/12/25/71
	af854a3a-2127-422b-91ae-364da2661108	http://lists.fedoraproject.org/pipermail/package-announce/2016-February/176484.html
	af854a3a-2127-422b-91ae-364da2661108	http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00015.html
	af854a3a-2127-422b-91ae-364da2661108	http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00019.html
	af854a3a-2127-422b-91ae-364da2661108	http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00025.html
	af854a3a-2127-422b-91ae-364da2661108	http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00026.html
	af854a3a-2127-422b-91ae-364da2661108	http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00027.html
	af854a3a-2127-422b-91ae-364da2661108	http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00028.html
	af854a3a-2127-422b-91ae-364da2661108	http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00029.html
	af854a3a-2127-422b-91ae-364da2661108	http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00030.html
	af854a3a-2127-422b-91ae-364da2661108	http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00031.html
	af854a3a-2127-422b-91ae-364da2661108	http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00032.html
	af854a3a-2127-422b-91ae-364da2661108	http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00033.html
	af854a3a-2127-422b-91ae-364da2661108	http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00034.html
	af854a3a-2127-422b-91ae-364da2661108	http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00036.html
	af854a3a-2127-422b-91ae-364da2661108	http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00037.html
	af854a3a-2127-422b-91ae-364da2661108	http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00005.html
	af854a3a-2127-422b-91ae-364da2661108	http://marc.info/?l=linux-kernel&m=145204362722256&w=2
	af854a3a-2127-422b-91ae-364da2661108	http://marc.info/?l=linux-kernel&m=145204641422813&w=2
	af854a3a-2127-422b-91ae-364da2661108	http://www.debian.org/security/2016/dsa-3434
	af854a3a-2127-422b-91ae-364da2661108	http://www.openwall.com/lists/oss-security/2015/12/17/12
	af854a3a-2127-422b-91ae-364da2661108	http://www.openwall.com/lists/oss-security/2015/12/31/5
	af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/79899
	af854a3a-2127-422b-91ae-364da2661108	http://www.securitytracker.com/id/1034899
	af854a3a-2127-422b-91ae-364da2661108	https://bugzilla.redhat.com/show_bug.cgi?id=1295287
	af854a3a-2127-422b-91ae-364da2661108	https://lkml.org/lkml/2015/12/25/71

Impacted products

	Vendor	Product	Version
	linux	linux_kernel	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "EDD97C46-E284-47DB-B96A-3B8D5013F2F7",
              "versionEndIncluding": "4.4.1",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [
    {
      "sourceIdentifier": "security@debian.org",
      "tags": [
        "disputed"
      ]
    }
  ],
  "descriptions": [
    {
      "lang": "en",
      "value": "kernel/ptrace.c in the Linux kernel through 4.4.1 mishandles uid and gid mappings, which allows local users to gain privileges by establishing a user namespace, waiting for a root process to enter that namespace with an unsafe uid or gid, and then using the ptrace system call.  NOTE: the vendor states \"there is no kernel bug here."
    },
    {
      "lang": "es",
      "value": "** DISPUTADA ** kernel/ptrace.c en el kernel de Linux hasta la versi\u00f3n 4.4.1 no maneja correctamente el mapeo uid y gid, lo que permite a usuarios locales obtener privilegios estableciendo un espacio de nombres de usuario, a la espera de un proceso root para entrar ese espacio de nombres con un uid o gid inseguro, y despu\u00e9s utilizando la llamada al sistema ptrace. NOTA: el vendedor afirma \"no hay ning\u00fan error en el kernel aqu\u00ed\"."
    }
  ],
  "id": "CVE-2015-8709",
  "lastModified": "2025-04-12T10:46:40.837",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "LOCAL",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 6.9,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 3.4,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ],
    "cvssMetricV30": [
      {
        "cvssData": {
          "attackComplexity": "HIGH",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.0,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.0"
        },
        "exploitabilityScore": 1.0,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2016-02-08T03:59:05.887",
  "references": [
    {
      "source": "security@debian.org",
      "url": "http://lists.fedoraproject.org/pipermail/package-announce/2016-February/176484.html"
    },
    {
      "source": "security@debian.org",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00015.html"
    },
    {
      "source": "security@debian.org",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00019.html"
    },
    {
      "source": "security@debian.org",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00025.html"
    },
    {
      "source": "security@debian.org",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00026.html"
    },
    {
      "source": "security@debian.org",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00027.html"
    },
    {
      "source": "security@debian.org",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00028.html"
    },
    {
      "source": "security@debian.org",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00029.html"
    },
    {
      "source": "security@debian.org",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00030.html"
    },
    {
      "source": "security@debian.org",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00031.html"
    },
    {
      "source": "security@debian.org",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00032.html"
    },
    {
      "source": "security@debian.org",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00033.html"
    },
    {
      "source": "security@debian.org",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00034.html"
    },
    {
      "source": "security@debian.org",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00036.html"
    },
    {
      "source": "security@debian.org",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00037.html"
    },
    {
      "source": "security@debian.org",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00005.html"
    },
    {
      "source": "security@debian.org",
      "url": "http://marc.info/?l=linux-kernel\u0026m=145204362722256\u0026w=2"
    },
    {
      "source": "security@debian.org",
      "url": "http://marc.info/?l=linux-kernel\u0026m=145204641422813\u0026w=2"
    },
    {
      "source": "security@debian.org",
      "url": "http://www.debian.org/security/2016/dsa-3434"
    },
    {
      "source": "security@debian.org",
      "url": "http://www.openwall.com/lists/oss-security/2015/12/17/12"
    },
    {
      "source": "security@debian.org",
      "url": "http://www.openwall.com/lists/oss-security/2015/12/31/5"
    },
    {
      "source": "security@debian.org",
      "url": "http://www.securityfocus.com/bid/79899"
    },
    {
      "source": "security@debian.org",
      "url": "http://www.securitytracker.com/id/1034899"
    },
    {
      "source": "security@debian.org",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1295287"
    },
    {
      "source": "security@debian.org",
      "url": "https://lkml.org/lkml/2015/12/25/71"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.fedoraproject.org/pipermail/package-announce/2016-February/176484.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00015.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00019.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00025.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00026.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00027.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00028.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00029.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00030.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00031.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00032.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00033.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00034.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00036.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00037.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00005.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://marc.info/?l=linux-kernel\u0026m=145204362722256\u0026w=2"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://marc.info/?l=linux-kernel\u0026m=145204641422813\u0026w=2"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.debian.org/security/2016/dsa-3434"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.openwall.com/lists/oss-security/2015/12/17/12"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.openwall.com/lists/oss-security/2015/12/31/5"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/79899"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securitytracker.com/id/1034899"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1295287"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://lkml.org/lkml/2015/12/25/71"
    }
  ],
  "sourceIdentifier": "security@debian.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-264"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-FPP6-VH8J-3RGM

Vulnerability from github – Published: 2022-05-17 00:27 – Updated: 2022-05-17 00:27

Details

** DISPUTED ** kernel/ptrace.c in the Linux kernel through 4.4.1 mishandles uid and gid mappings, which allows local users to gain privileges by establishing a user namespace, waiting for a root process to enter that namespace with an unsafe uid or gid, and then using the ptrace system call. NOTE: the vendor states "there is no kernel bug here."

Severity ?

7.0 (High)


                  
                    CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2015-8709"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2016-02-08T03:59:00Z",
    "severity": "HIGH"
  },
  "details": "** DISPUTED ** kernel/ptrace.c in the Linux kernel through 4.4.1 mishandles uid and gid mappings, which allows local users to gain privileges by establishing a user namespace, waiting for a root process to enter that namespace with an unsafe uid or gid, and then using the ptrace system call.  NOTE: the vendor states \"there is no kernel bug here.\"",
  "id": "GHSA-fpp6-vh8j-3rgm",
  "modified": "2022-05-17T00:27:49Z",
  "published": "2022-05-17T00:27:49Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-8709"
    },
    {
      "type": "WEB",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1295287"
    },
    {
      "type": "WEB",
      "url": "https://lkml.org/lkml/2015/12/25/71"
    },
    {
      "type": "WEB",
      "url": "http://lists.fedoraproject.org/pipermail/package-announce/2016-February/176484.html"
    },
    {
      "type": "WEB",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00015.html"
    },
    {
      "type": "WEB",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00019.html"
    },
    {
      "type": "WEB",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00025.html"
    },
    {
      "type": "WEB",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00026.html"
    },
    {
      "type": "WEB",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00027.html"
    },
    {
      "type": "WEB",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00028.html"
    },
    {
      "type": "WEB",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00029.html"
    },
    {
      "type": "WEB",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00030.html"
    },
    {
      "type": "WEB",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00031.html"
    },
    {
      "type": "WEB",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00032.html"
    },
    {
      "type": "WEB",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00033.html"
    },
    {
      "type": "WEB",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00034.html"
    },
    {
      "type": "WEB",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00036.html"
    },
    {
      "type": "WEB",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00037.html"
    },
    {
      "type": "WEB",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00005.html"
    },
    {
      "type": "WEB",
      "url": "http://marc.info/?l=linux-kernel\u0026m=145204362722256\u0026w=2"
    },
    {
      "type": "WEB",
      "url": "http://marc.info/?l=linux-kernel\u0026m=145204641422813\u0026w=2"
    },
    {
      "type": "WEB",
      "url": "http://www.debian.org/security/2016/dsa-3434"
    },
    {
      "type": "WEB",
      "url": "http://www.openwall.com/lists/oss-security/2015/12/17/12"
    },
    {
      "type": "WEB",
      "url": "http://www.openwall.com/lists/oss-security/2015/12/31/5"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/79899"
    },
    {
      "type": "WEB",
      "url": "http://www.securitytracker.com/id/1034899"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

CNVD-2016-01042

Vulnerability from cnvd - Published: 2016-02-17

Title

Linux kernel权限提升漏洞（CNVD-2016-01042）

Description

Linux kernel是一个开源，自由的操作系统核心，最初由Linus Torvalds完成。 Linux kernel 4.4.1及之前版本的kernel/ptrace.c文件中存在安全漏洞，该漏洞源于程序未能正确处理uid和gid映射。本地攻击者可通过建立用户命名空间，等待root进程使用不安全的uid或gid进入该命名空间后使用ptrace系统调用，利用该漏洞获取权限。

Severity

中

Patch Name

Linux kernel权限提升漏洞（CNVD-2016-01042）的补丁

Patch Description

Formal description

用户可参考如下厂商提供的安全公告获取补丁以修复该漏洞： http://marc.info/?l=linux-kernel&m=145204641422813&w=2

Reference

http://marc.info/?l=linux-kernel&m=145204641422813&w=2

Impacted products

Name
Linux Kernel <4.4.1

Show details on source website

JSON

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "79899"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2015-8709"
    }
  },
  "description": "Linux kernel\u662f\u4e00\u4e2a\u5f00\u6e90\uff0c\u81ea\u7531\u7684\u64cd\u4f5c\u7cfb\u7edf\u6838\u5fc3\uff0c\u6700\u521d\u7531Linus Torvalds\u5b8c\u6210\u3002\r\n\r\nLinux kernel 4.4.1\u53ca\u4e4b\u524d\u7248\u672c\u7684kernel/ptrace.c\u6587\u4ef6\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u6b63\u786e\u5904\u7406uid\u548cgid\u6620\u5c04\u3002\u672c\u5730\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u5efa\u7acb\u7528\u6237\u547d\u540d\u7a7a\u95f4\uff0c\u7b49\u5f85root\u8fdb\u7a0b\u4f7f\u7528\u4e0d\u5b89\u5168\u7684uid\u6216gid\u8fdb\u5165\u8be5\u547d\u540d\u7a7a\u95f4\u540e\u4f7f\u7528ptrace\u7cfb\u7edf\u8c03\u7528\uff0c\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6\u6743\u9650\u3002",
  "discovererName": "Jann Horn",
  "formalWay": "\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u5382\u5546\u63d0\u4f9b\u7684\u5b89\u5168\u516c\u544a\u83b7\u53d6\u8865\u4e01\u4ee5\u4fee\u590d\u8be5\u6f0f\u6d1e\uff1a\r\nhttp://marc.info/?l=linux-kernel\u0026m=145204641422813\u0026w=2",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2016-01042",
  "openTime": "2016-02-17",
  "patchDescription": "Linux kernel\u662f\u4e00\u4e2a\u5f00\u6e90\uff0c\u81ea\u7531\u7684\u64cd\u4f5c\u7cfb\u7edf\u6838\u5fc3\uff0c\u6700\u521d\u7531Linus Torvalds\u5b8c\u6210\u3002\r\n\r\nLinux kernel 4.4.1\u53ca\u4e4b\u524d\u7248\u672c\u7684kernel/ptrace.c\u6587\u4ef6\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u6b63\u786e\u5904\u7406uid\u548cgid\u6620\u5c04\u3002\u672c\u5730\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u5efa\u7acb\u7528\u6237\u547d\u540d\u7a7a\u95f4\uff0c\u7b49\u5f85root\u8fdb\u7a0b\u4f7f\u7528\u4e0d\u5b89\u5168\u7684uid\u6216gid\u8fdb\u5165\u8be5\u547d\u540d\u7a7a\u95f4\u540e\u4f7f\u7528ptrace\u7cfb\u7edf\u8c03\u7528\uff0c\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6\u6743\u9650\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Linux kernel\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\uff08CNVD-2016-01042\uff09\u7684\u8865\u4e01",
  "products": {
    "product": "Linux Kernel \u003c4.4.1"
  },
  "referenceLink": "http://marc.info/?l=linux-kernel\u0026m=145204641422813\u0026w=2",
  "serverity": "\u4e2d",
  "submitTime": "2016-02-11",
  "title": "Linux kernel\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\uff08CNVD-2016-01042\uff09"
}

CERTFR-2017-AVI-060

Vulnerability from certfr_avis - Published: 2017-03-01 - Updated: 2017-03-01

De multiples vulnérabilités ont été corrigées dans le noyau Linux de SUSE. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et un déni de service.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 12-SP2
SUSE	N/A	SUSE Linux Enterprise High Availability 12-SP2
SUSE	SUSE Linux Enterprise Live Patching	SUSE Linux Enterprise Live Patching 12
SUSE	N/A	OpenStack Cloud Magnum Orchestration 7
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server pour Raspberry Pi 12-SP2
SUSE	N/A	SUSE Linux Enterprise Workstation Extension 12-SP2
SUSE	SUSE Linux Enterprise Desktop	SUSE Linux Enterprise Desktop 12-SP2
SUSE	N/A	SUSE Linux Enterprise Software Development Kit 12-SP2

References

Title

Publication Time

Tags

Bulletin de sécurité SUSE SUSE-SU-2017:0575-1 du 28 février 2017	None	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2017:0575-1 du 28 février 2017	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "SUSE Linux Enterprise Server 12-SP2",
      "product": {
        "name": "SUSE Linux Enterprise Server",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise High Availability 12-SP2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Live Patching 12",
      "product": {
        "name": "SUSE Linux Enterprise Live Patching",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "OpenStack Cloud Magnum Orchestration 7",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Server pour Raspberry Pi 12-SP2",
      "product": {
        "name": "SUSE Linux Enterprise Server",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Workstation Extension 12-SP2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Desktop 12-SP2",
      "product": {
        "name": "SUSE Linux Enterprise Desktop",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Software Development Kit 12-SP2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2017-5577",
      "url": "https://www.cve.org/CVERecord?id=CVE-2017-5577"
    },
    {
      "name": "CVE-2017-2584",
      "url": "https://www.cve.org/CVERecord?id=CVE-2017-2584"
    },
    {
      "name": "CVE-2017-5970",
      "url": "https://www.cve.org/CVERecord?id=CVE-2017-5970"
    },
    {
      "name": "CVE-2015-8709",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-8709"
    },
    {
      "name": "CVE-2017-2583",
      "url": "https://www.cve.org/CVERecord?id=CVE-2017-2583"
    },
    {
      "name": "CVE-2016-9806",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9806"
    },
    {
      "name": "CVE-2017-5897",
      "url": "https://www.cve.org/CVERecord?id=CVE-2017-5897"
    },
    {
      "name": "CVE-2016-7117",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7117"
    },
    {
      "name": "CVE-2017-5986",
      "url": "https://www.cve.org/CVERecord?id=CVE-2017-5986"
    },
    {
      "name": "CVE-2017-5576",
      "url": "https://www.cve.org/CVERecord?id=CVE-2017-5576"
    },
    {
      "name": "CVE-2017-5551",
      "url": "https://www.cve.org/CVERecord?id=CVE-2017-5551"
    }
  ],
  "initial_release_date": "2017-03-01T00:00:00",
  "last_revision_date": "2017-03-01T00:00:00",
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2017:0575-1 du 28 f\u00e9vrier    2017",
      "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20170575-1/"
    }
  ],
  "reference": "CERTFR-2017-AVI-060",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2017-03-01T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "D\u00e9ni de service"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003ele noyau Linux de SUSE\u003c/span\u003e. Certaines d\u0027entre elles\npermettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire\n\u00e0 distance, un d\u00e9ni de service \u00e0 distance et un d\u00e9ni de service.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux SUSE",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2017:0575-1 du 28 f\u00e9vrier 2017",
      "url": null
    }
  ]
}

CERTFR-2016-AVI-131

Vulnerability from certfr_avis - Published: 2016-04-15 - Updated: 2016-04-15

De multiples vulnérabilités ont été corrigées dans le noyau Linux de Suse. Elles permettent à un attaquant de provoquer un déni de service et une élévation de privilèges.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

SUSE Linux Enterprise Live Patching 12

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Bulletin de sécurité Suse suse-su-20161041-1 du 14 avril 2016	None	vendor-advisory
Bulletin de sécurité Suse suse-su-20161037-1 du 14 avril 2016	None	vendor-advisory
Bulletin de sécurité Suse suse-su-20161038-1 du 14 avril 2016	None	vendor-advisory
Bulletin de sécurité Suse suse-su-20161031-1 du 14 avril 2016	None	vendor-advisory
Bulletin de sécurité Suse suse-su-20161040-1 du 14 avril 2016	None	vendor-advisory
Bulletin de sécurité Suse suse-su-20161033-1 du 14 avril 2016	None	vendor-advisory
Bulletin de sécurité Suse suse-su-20161032-1 du 14 avril 2016	None	vendor-advisory
Bulletin de sécurité Suse suse-su-20161039-1 du 14 avril 2016	None	vendor-advisory
Bulletin de sécurité Suse suse-su-20161035-1 du 14 avril 2016	None	vendor-advisory
Bulletin de sécurité Suse suse-su-20161034-1 du 14 avril 2016	None	vendor-advisory
Bulletin de sécurité Suse suse-su-20161037-1 du 14 avril 2016	-	other
Bulletin de sécurité Suse suse-su-20161032-1 du 14 avril 2016	-	other
Bulletin de sécurité Suse suse-su-20161034-1 du 14 avril 2016	-	other
Bulletin de sécurité Suse suse-su-20161041-1 du 14 avril 2016	-	other
Bulletin de sécurité Suse suse-su-20161039-1 du 14 avril 2016	-	other
Bulletin de sécurité Suse suse-su-20161033-1 du 14 avril 2016	-	other
Bulletin de sécurité Suse suse-su-20161035-1 du 14 avril 2016	-	other
Bulletin de sécurité Suse suse-su-20161040-1 du 14 avril 2016	-	other
Bulletin de sécurité Suse suse-su-20161031-1 du 14 avril 2016	-	other
Bulletin de sécurité Suse suse-su-20161038-1 du 14 avril 2016	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cP\u003eSUSE Linux Enterprise Live Patching 12\u003c/P\u003e",
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2016-0774",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-0774"
    },
    {
      "name": "CVE-2015-8709",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-8709"
    },
    {
      "name": "CVE-2016-2384",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-2384"
    },
    {
      "name": "CVE-2015-8812",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-8812"
    }
  ],
  "initial_release_date": "2016-04-15T00:00:00",
  "last_revision_date": "2016-04-15T00:00:00",
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Suse suse-su-20161037-1 du 14 avril    2016",
      "url": "https://www.suse.com/support/update/announcement/2016/suse-su-20161037-1.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Suse suse-su-20161032-1 du 14 avril    2016",
      "url": "https://www.suse.com/support/update/announcement/2016/suse-su-20161032-1.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Suse suse-su-20161034-1 du 14 avril    2016",
      "url": "https://www.suse.com/support/update/announcement/2016/suse-su-20161034-1.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Suse suse-su-20161041-1 du 14 avril    2016",
      "url": "https://www.suse.com/support/update/announcement/2016/suse-su-20161041-1.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Suse suse-su-20161039-1 du 14 avril    2016",
      "url": "https://www.suse.com/support/update/announcement/2016/suse-su-20161039-1.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Suse suse-su-20161033-1 du 14 avril    2016",
      "url": "https://www.suse.com/support/update/announcement/2016/suse-su-20161033-1.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Suse suse-su-20161035-1 du 14 avril    2016",
      "url": "https://www.suse.com/support/update/announcement/2016/suse-su-20161035-1.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Suse suse-su-20161040-1 du 14 avril    2016",
      "url": "https://www.suse.com/support/update/announcement/2016/suse-su-20161040-1.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Suse suse-su-20161031-1 du 14 avril    2016",
      "url": "https://www.suse.com/support/update/announcement/2016/suse-su-20161031-1.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Suse suse-su-20161038-1 du 14 avril    2016",
      "url": "https://www.suse.com/support/update/announcement/2016/suse-su-20161038-1.html"
    }
  ],
  "reference": "CERTFR-2016-AVI-131",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2016-04-15T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003ele noyau Linux de Suse\u003c/span\u003e. Elles permettent \u00e0 un\nattaquant de provoquer un d\u00e9ni de service et une \u00e9l\u00e9vation de\nprivil\u00e8ges.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de Suse",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Suse suse-su-20161041-1 du 14 avril 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Suse suse-su-20161037-1 du 14 avril 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Suse suse-su-20161038-1 du 14 avril 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Suse suse-su-20161031-1 du 14 avril 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Suse suse-su-20161040-1 du 14 avril 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Suse suse-su-20161033-1 du 14 avril 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Suse suse-su-20161032-1 du 14 avril 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Suse suse-su-20161039-1 du 14 avril 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Suse suse-su-20161035-1 du 14 avril 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Suse suse-su-20161034-1 du 14 avril 2016",
      "url": null
    }
  ]
}

CERTFR-2016-AVI-103

Vulnerability from certfr_avis - Published: 2016-03-18 - Updated: 2016-03-18

De multiples vulnérabilités ont été corrigées dans le noyau Linux de Suse. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire, un déni de service et une atteinte à la confidentialité des données.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
SUSE	N/A	SUSE Linux Enterprise Workstation Extension 12
SUSE	SUSE Linux Enterprise Live Patching	SUSE Linux Enterprise Live Patching 12
SUSE	N/A	SUSE Linux Enterprise Module for Public Cloud 12
SUSE	SUSE Linux Enterprise Desktop	SUSE Linux Enterprise Desktop 12
SUSE	N/A	SUSE Linux Enterprise Software Development Kit 12
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 12

References

Title

Publication Time

Tags

Bulletin de sécurité Suse SUSE-SU-2016:0785-1 du 16 mars 2016	None	vendor-advisory
Bulletin de sécurité Suse SUSE-SU-2016:0785-1 du 16 mars 2016	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "SUSE Linux Enterprise Workstation Extension 12",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Live Patching 12",
      "product": {
        "name": "SUSE Linux Enterprise Live Patching",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Module for Public Cloud 12",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Desktop 12",
      "product": {
        "name": "SUSE Linux Enterprise Desktop",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Software Development Kit 12",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Server 12",
      "product": {
        "name": "SUSE Linux Enterprise Server",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2015-8767",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-8767"
    },
    {
      "name": "CVE-2016-0723",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-0723"
    },
    {
      "name": "CVE-2015-8785",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-8785"
    },
    {
      "name": "CVE-2015-5707",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-5707"
    },
    {
      "name": "CVE-2016-0774",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-0774"
    },
    {
      "name": "CVE-2013-7446",
      "url": "https://www.cve.org/CVERecord?id=CVE-2013-7446"
    },
    {
      "name": "CVE-2015-8709",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-8709"
    },
    {
      "name": "CVE-2016-2384",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-2384"
    },
    {
      "name": "CVE-2016-2069",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-2069"
    },
    {
      "name": "CVE-2015-8812",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-8812"
    }
  ],
  "initial_release_date": "2016-03-18T00:00:00",
  "last_revision_date": "2016-03-18T00:00:00",
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:0785-1 du 16 mars    2016",
      "url": "https://www.suse.com/support/update/announcement/2016/suse-su-20160785-1.html"
    }
  ],
  "reference": "CERTFR-2016-AVI-103",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2016-03-18T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire"
    },
    {
      "description": "D\u00e9ni de service"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003ele noyau Linux de Suse\u003c/span\u003e. Certaines d\u0027entre elles\npermettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire,\nun d\u00e9ni de service et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de Suse",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:0785-1 du 16 mars 2016",
      "url": null
    }
  ]
}

CERTFR-2016-AVI-004

Vulnerability from certfr_avis - Published: 2016-01-06 - Updated: 2016-01-06

De multiples vulnérabilités ont été corrigées dans le noyau Linux de Debian. Certaines d'entre elles permettent à un attaquant de provoquer un déni de service à distance, un déni de service et une atteinte à la confidentialité des données.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Debian	N/A	Debian Sid versions antérieures à 4.3.3-3
Debian	N/A	Debian Wheezy versions antérieures à 3.2.73-2+deb7u2
Debian	N/A	Debian Jessie versions antérieures à 3.16.7-ckt20-1+deb8u2

References

Title

Publication Time

Tags

Bulletin de sécurité le noyau Linux DSA-3434-1 de du 05 janvier 2016	None	vendor-advisory
Bulletin de sécurité le noyau Linux DSA-3434-1 de du 05 janvier 2016	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Debian Sid versions ant\u00e9rieures \u00e0 4.3.3-3",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Debian",
          "scada": false
        }
      }
    },
    {
      "description": "Debian Wheezy versions ant\u00e9rieures \u00e0 3.2.73-2+deb7u2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Debian",
          "scada": false
        }
      }
    },
    {
      "description": "Debian Jessie versions ant\u00e9rieures \u00e0 3.16.7-ckt20-1+deb8u2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Debian",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2015-8569",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-8569"
    },
    {
      "name": "CVE-2015-8575",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-8575"
    },
    {
      "name": "CVE-2015-8550",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-8550"
    },
    {
      "name": "CVE-2015-8551",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-8551"
    },
    {
      "name": "CVE-2015-7513",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-7513"
    },
    {
      "name": "CVE-2015-7550",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-7550"
    },
    {
      "name": "CVE-2015-8709",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-8709"
    },
    {
      "name": "CVE-2015-8543",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-8543"
    },
    {
      "name": "CVE-2015-8552",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-8552"
    }
  ],
  "initial_release_date": "2016-01-06T00:00:00",
  "last_revision_date": "2016-01-06T00:00:00",
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 le noyau Linux DSA-3434-1 de du 05    janvier 2016",
      "url": "https://www.debian.org/security/2016/dsa-3434"
    }
  ],
  "reference": "CERTFR-2016-AVI-004",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2016-01-06T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "D\u00e9ni de service"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003ele noyau Linux de Debian\u003c/span\u003e. Certaines d\u0027entre elles\npermettent \u00e0 un attaquant de provoquer un d\u00e9ni de service \u00e0 distance, un\nd\u00e9ni de service et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de Debian",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 le noyau Linux DSA-3434-1 de du 05 janvier 2016",
      "url": null
    }
  ]
}

GSD-2015-8709

Vulnerability from gsd - Updated: 2023-12-13 01:20

Details

Aliases

CVE-2015-8709

Aliases

CVE-2015-8709

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2015-8709",
    "description": "** DISPUTED ** kernel/ptrace.c in the Linux kernel through 4.4.1 mishandles uid and gid mappings, which allows local users to gain privileges by establishing a user namespace, waiting for a root process to enter that namespace with an unsafe uid or gid, and then using the ptrace system call.  NOTE: the vendor states \"there is no kernel bug here.\"",
    "id": "GSD-2015-8709",
    "references": [
      "https://www.suse.com/security/cve/CVE-2015-8709.html",
      "https://www.debian.org/security/2016/dsa-3434",
      "https://ubuntu.com/security/CVE-2015-8709",
      "https://alas.aws.amazon.com/cve/html/CVE-2015-8709.html"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2015-8709"
      ],
      "details": "** DISPUTED ** kernel/ptrace.c in the Linux kernel through 4.4.1 mishandles uid and gid mappings, which allows local users to gain privileges by establishing a user namespace, waiting for a root process to enter that namespace with an unsafe uid or gid, and then using the ptrace system call.  NOTE: the vendor states \"there is no kernel bug here.\"",
      "id": "GSD-2015-8709",
      "modified": "2023-12-13T01:20:03.604295Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "security@debian.org",
        "ID": "CVE-2015-8709",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "** DISPUTED ** kernel/ptrace.c in the Linux kernel through 4.4.1 mishandles uid and gid mappings, which allows local users to gain privileges by establishing a user namespace, waiting for a root process to enter that namespace with an unsafe uid or gid, and then using the ptrace system call.  NOTE: the vendor states \"there is no kernel bug here.\""
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "SUSE-SU-2016:1038",
            "refsource": "SUSE",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00031.html"
          },
          {
            "name": "SUSE-SU-2016:1033",
            "refsource": "SUSE",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00027.html"
          },
          {
            "name": "SUSE-SU-2016:1034",
            "refsource": "SUSE",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00028.html"
          },
          {
            "name": "[linux-kernel] 20151226 [PATCH] ptrace: being capable wrt a process requires mapped uids/gids",
            "refsource": "MLIST",
            "url": "https://lkml.org/lkml/2015/12/25/71"
          },
          {
            "name": "SUSE-SU-2016:1035",
            "refsource": "SUSE",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00029.html"
          },
          {
            "name": "[linux-kernel] 20160106 Re: [PATCH] ptrace: being capable wrt a process requires mapped uids/gids",
            "refsource": "MLIST",
            "url": "http://marc.info/?l=linux-kernel\u0026m=145204641422813\u0026w=2"
          },
          {
            "name": "SUSE-SU-2016:1764",
            "refsource": "SUSE",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00005.html"
          },
          {
            "name": "SUSE-SU-2016:1031",
            "refsource": "SUSE",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00025.html"
          },
          {
            "name": "SUSE-SU-2016:1019",
            "refsource": "SUSE",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00019.html"
          },
          {
            "name": "[oss-security] 20151231 Re: CVE Request: Linux kernel: privilege escalation in user namespaces",
            "refsource": "MLIST",
            "url": "http://www.openwall.com/lists/oss-security/2015/12/31/5"
          },
          {
            "name": "[oss-security] 20151217 CVE Request: Linux kernel: privilege escalation in user namespaces",
            "refsource": "MLIST",
            "url": "http://www.openwall.com/lists/oss-security/2015/12/17/12"
          },
          {
            "name": "SUSE-SU-2016:1037",
            "refsource": "SUSE",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00030.html"
          },
          {
            "name": "SUSE-SU-2016:1045",
            "refsource": "SUSE",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00036.html"
          },
          {
            "name": "[linux-kernel] 20160106 Re: [PATCH] ptrace: being capable wrt a process requires mapped uids/gids",
            "refsource": "MLIST",
            "url": "http://marc.info/?l=linux-kernel\u0026m=145204362722256\u0026w=2"
          },
          {
            "name": "FEDORA-2016-5d43766e33",
            "refsource": "FEDORA",
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2016-February/176484.html"
          },
          {
            "name": "SUSE-SU-2016:1032",
            "refsource": "SUSE",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00026.html"
          },
          {
            "name": "SUSE-SU-2016:1039",
            "refsource": "SUSE",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00032.html"
          },
          {
            "name": "SUSE-SU-2016:1041",
            "refsource": "SUSE",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00034.html"
          },
          {
            "name": "SUSE-SU-2016:1046",
            "refsource": "SUSE",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00037.html"
          },
          {
            "name": "79899",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/79899"
          },
          {
            "name": "1034899",
            "refsource": "SECTRACK",
            "url": "http://www.securitytracker.com/id/1034899"
          },
          {
            "name": "openSUSE-SU-2016:1008",
            "refsource": "SUSE",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00015.html"
          },
          {
            "name": "https://bugzilla.redhat.com/show_bug.cgi?id=1295287",
            "refsource": "CONFIRM",
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1295287"
          },
          {
            "name": "DSA-3434",
            "refsource": "DEBIAN",
            "url": "http://www.debian.org/security/2016/dsa-3434"
          },
          {
            "name": "SUSE-SU-2016:1040",
            "refsource": "SUSE",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00033.html"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "cve": {
        "configurations": [
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                    "matchCriteriaId": "EDD97C46-E284-47DB-B96A-3B8D5013F2F7",
                    "versionEndIncluding": "4.4.1",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ]
          }
        ],
        "descriptions": [
          {
            "lang": "en",
            "value": "kernel/ptrace.c in the Linux kernel through 4.4.1 mishandles uid and gid mappings, which allows local users to gain privileges by establishing a user namespace, waiting for a root process to enter that namespace with an unsafe uid or gid, and then using the ptrace system call.  NOTE: the vendor states \"there is no kernel bug here."
          },
          {
            "lang": "es",
            "value": "** DISPUTADA ** kernel/ptrace.c en el kernel de Linux hasta la versi\u00f3n 4.4.1 no maneja correctamente el mapeo uid y gid, lo que permite a usuarios locales obtener privilegios estableciendo un espacio de nombres de usuario, a la espera de un proceso root para entrar ese espacio de nombres con un uid o gid inseguro, y despu\u00e9s utilizando la llamada al sistema ptrace. NOTA: el vendedor afirma \"no hay ning\u00fan error en el kernel aqu\u00ed\"."
          }
        ],
        "id": "CVE-2015-8709",
        "lastModified": "2024-04-11T00:54:37.300",
        "metrics": {
          "cvssMetricV2": [
            {
              "acInsufInfo": false,
              "baseSeverity": "MEDIUM",
              "cvssData": {
                "accessComplexity": "MEDIUM",
                "accessVector": "LOCAL",
                "authentication": "NONE",
                "availabilityImpact": "COMPLETE",
                "baseScore": 6.9,
                "confidentialityImpact": "COMPLETE",
                "integrityImpact": "COMPLETE",
                "vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C",
                "version": "2.0"
              },
              "exploitabilityScore": 3.4,
              "impactScore": 10.0,
              "obtainAllPrivilege": false,
              "obtainOtherPrivilege": false,
              "obtainUserPrivilege": false,
              "source": "nvd@nist.gov",
              "type": "Primary"
            }
          ],
          "cvssMetricV30": [
            {
              "cvssData": {
                "attackComplexity": "HIGH",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.0,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              "exploitabilityScore": 1.0,
              "impactScore": 5.9,
              "source": "nvd@nist.gov",
              "type": "Primary"
            }
          ]
        },
        "published": "2016-02-08T03:59:05.887",
        "references": [
          {
            "source": "security@debian.org",
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2016-February/176484.html"
          },
          {
            "source": "security@debian.org",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00015.html"
          },
          {
            "source": "security@debian.org",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00019.html"
          },
          {
            "source": "security@debian.org",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00025.html"
          },
          {
            "source": "security@debian.org",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00026.html"
          },
          {
            "source": "security@debian.org",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00027.html"
          },
          {
            "source": "security@debian.org",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00028.html"
          },
          {
            "source": "security@debian.org",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00029.html"
          },
          {
            "source": "security@debian.org",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00030.html"
          },
          {
            "source": "security@debian.org",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00031.html"
          },
          {
            "source": "security@debian.org",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00032.html"
          },
          {
            "source": "security@debian.org",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00033.html"
          },
          {
            "source": "security@debian.org",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00034.html"
          },
          {
            "source": "security@debian.org",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00036.html"
          },
          {
            "source": "security@debian.org",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00037.html"
          },
          {
            "source": "security@debian.org",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00005.html"
          },
          {
            "source": "security@debian.org",
            "url": "http://marc.info/?l=linux-kernel\u0026m=145204362722256\u0026w=2"
          },
          {
            "source": "security@debian.org",
            "url": "http://marc.info/?l=linux-kernel\u0026m=145204641422813\u0026w=2"
          },
          {
            "source": "security@debian.org",
            "url": "http://www.debian.org/security/2016/dsa-3434"
          },
          {
            "source": "security@debian.org",
            "url": "http://www.openwall.com/lists/oss-security/2015/12/17/12"
          },
          {
            "source": "security@debian.org",
            "url": "http://www.openwall.com/lists/oss-security/2015/12/31/5"
          },
          {
            "source": "security@debian.org",
            "url": "http://www.securityfocus.com/bid/79899"
          },
          {
            "source": "security@debian.org",
            "url": "http://www.securitytracker.com/id/1034899"
          },
          {
            "source": "security@debian.org",
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1295287"
          },
          {
            "source": "security@debian.org",
            "url": "https://lkml.org/lkml/2015/12/25/71"
          }
        ],
        "sourceIdentifier": "security@debian.org",
        "vulnStatus": "Modified",
        "weaknesses": [
          {
            "description": [
              {
                "lang": "en",
                "value": "CWE-264"
              }
            ],
            "source": "nvd@nist.gov",
            "type": "Primary"
          }
        ]
      }
    }
  }
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2015-8709 (GCVE-0-2015-8709)

Solution

Solution

Solution

Solution

Tags

Sightings

Nomenclature