Lucene search

K
prionPRIOn knowledge basePRION:CVE-2015-8709
HistoryFeb 08, 2016 - 3:59 a.m.

Code injection

2016-02-0803:59:00
PRIOn knowledge base
www.prio-n.com
9

AI Score

6.8

Confidence

Low

EPSS

0

Percentile

10.1%

DISPUTED kernel/ptrace.c in the Linux kernel through 4.4.1 mishandles uid and gid mappings, which allows local users to gain privileges by establishing a user namespace, waiting for a root process to enter that namespace with an unsafe uid or gid, and then using the ptrace system call. NOTE: the vendor states β€œthere is no kernel bug here.”

References

AI Score

6.8

Confidence

Low

EPSS

0

Percentile

10.1%