Lucene search
K

235 matches found

OSV
OSV
added 2016/04/29 12:0 a.m.3 views

UBUNTU-CVE-2016-1580

The setupsnappyosmounts function in the ubuntu-core-launcher package before 1.0.27.1 improperly determines the mount point of bind mounts when using snaps, which might allow remote attackers to obtain sensitive information or gain privileges via a snap with a name starting with "ubuntu-core."...

9.8CVSS7.3AI score0.03485EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2015/12/16 12:0 a.m.40 views

CentOS Update for kernel CESA-2015:2636 centos6

Check the version of kernel SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882342";...

10CVSS6.2AI score0.02501EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2015/12/15 1:57 p.m.4 views

Kernel: vfs: Do not allow escaping from bind mounts

A flaw was found in the way the Linux kernel's file system implementation handled rename operations in which the source was inside and the destination was outside of a bind mount. A privileged user inside a container could use this flaw to escape the bind mount and, potentially, escalate their...

6.9CVSS6.8AI score0.01246EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2015/11/20 12:0 a.m.250 views

RHEL 7 : kernel (RHSA-2015:2152)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2015:2152 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. A flaw was found in the way the Linux kernel's file...

7.8CVSS6.5AI score0.03693EPSS
Exploits4References58
RedHat Linux
RedHat Linux
added 2015/11/19 6:24 a.m.5 views

Kernel: vfs: Do not allow escaping from bind mounts

A flaw was found in the way the Linux kernel's file system implementation handled rename operations in which the source was inside and the destination was outside of a bind mount. A privileged user inside a container could use this flaw to escape the bind mount and, potentially, escalate their...

6.9CVSS6.8AI score0.01246EPSS
Exploits0References4
Prion
Prion
added 2015/11/16 11:59 a.m.22 views

Design/Logic Flaw

The prependpath function in fs/dcache.c in the Linux kernel before 4.2.4 does not properly handle rename actions inside a bind mount, which allows local users to bypass an intended container protection mechanism by renaming a directory, related to a "double-chroot attack."...

6.9CVSS6.5AI score0.01246EPSS
Exploits0References34Affected Software1
Cvelist
Cvelist
added 2015/11/16 11:0 a.m.30 views

CVE-2015-2925

The prependpath function in fs/dcache.c in the Linux kernel before 4.2.4 does not properly handle rename actions inside a bind mount, which allows local users to bypass an intended container protection mechanism by renaming a directory, related to a "double-chroot attack."...

6AI score0.01246EPSS
Exploits0References34
Debian CVE
Debian CVE
added 2015/11/16 11:0 a.m.37 views

CVE-2015-2925

The prependpath function in fs/dcache.c in the Linux kernel before 4.2.4 does not properly handle rename actions inside a bind mount, which allows local users to bypass an intended container protection mechanism by renaming a directory, related to a "double-chroot attack."...

6.9CVSS6.6AI score0.01246EPSS
Exploits0
Cloud Foundry
Cloud Foundry
added 2015/11/12 12:0 a.m.64 views

USN-2798-1 Linux kernel vulnerability | Cloud Foundry

USN-2798-1 Linux kernel vulnerability Medium Vendor Vivid Versions Affected Ubuntu 14.04 Description It was discovered that in certain situations, a directory could be renamed outside of a bind mounted location. An attacker could use this to escape bind mount containment and gain access to...

6.9CVSS6.4AI score0.01246EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/11/06 12:0 a.m.44 views

Ubuntu 14.04 LTS : Linux kernel (Vivid HWE) vulnerabilities (USN-2798-1)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-2798-1 advisory. It was discovered that in certain situations, a directory could be renamed outside of a bind mounted location. An attacker could use this to escape bind...

6.9CVSS7AI score0.01246EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2015/11/06 12:0 a.m.50 views

Ubuntu 14.04 LTS : Linux kernel (Utopic HWE) vulnerabilities (USN-2797-1)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-2797-1 advisory. It was discovered that the Linux kernel did not check if a new IPv6 MTU set by a user space application was valid. A remote attacker could forge a route...

6.9CVSS6.8AI score0.05059EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2015/11/06 12:0 a.m.39 views

Ubuntu 12.04 LTS : linux vulnerabilities (USN-2792-1)

Dmitry Vyukov discovered that the Linux kernel did not properly initialize IPC object state in certain situations. A local attacker could use this to escalate their privileges, expose confidential information, or cause a denial of service system crash. CVE-2015-7613 It was discovered that the Lin...

6.9CVSS6.7AI score0.05059EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2015/11/06 12:0 a.m.31 views

Ubuntu 12.04 LTS : linux-lts-trusty vulnerabilities (USN-2795-1)

It was discovered that in certain situations, a directory could be renamed outside of a bind mounted location. An attacker could use this to escape bind mount containment and gain access to sensitive information. CVE-2015-2925 Moein Ghasemzadeh discovered that the USB WhiteHEAT serial driver...

6.9CVSS6.8AI score0.01246EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2015/11/06 12:0 a.m.43 views

Ubuntu: Security Advisory (USN-2799-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.9CVSS7AI score0.01246EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/11/06 12:0 a.m.47 views

Ubuntu: Security Advisory (USN-2797-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.9CVSS7.1AI score0.05059EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2015/11/06 12:0 a.m.47 views

Ubuntu: Security Advisory (USN-2794-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.9CVSS7AI score0.01246EPSS
Exploits0References2
OSV
OSV
added 2015/11/05 5:42 p.m.2 views

USN-2798-1 linux-lts-vivid vulnerabilities

It was discovered that in certain situations, a directory could be renamed outside of a bind mounted location. An attacker could use this to escape bind mount containment and gain access to sensitive information. CVE-2015-2925 Moein Ghasemzadeh discovered that the USB WhiteHEAT serial driver...

6.9CVSS6.8AI score0.01246EPSS
Exploits0References3
Ubuntu
Ubuntu
added 2015/11/05 5:34 p.m.76 views

USN-2797-1: Linux kernel (Utopic HWE) vulnerabilities

It was discovered that the Linux kernel did not check if a new IPv6 MTU set by a user space application was valid. A remote attacker could forge a route advertisement with an invalid MTU that a user space daemon like NetworkManager would honor and apply to the kernel, causing a denial of service...

6.9CVSS6.7AI score0.05059EPSS
Exploits1
OSV
OSV
added 2015/11/05 5:34 p.m.3 views

USN-2797-1 linux-lts-utopic vulnerabilities

It was discovered that the Linux kernel did not check if a new IPv6 MTU set by a user space application was valid. A remote attacker could forge a route advertisement with an invalid MTU that a user space daemon like NetworkManager would honor and apply to the kernel, causing a denial of service...

6.9CVSS6.7AI score0.05059EPSS
Exploits1References5
Ubuntu
Ubuntu
added 2015/11/05 5:19 p.m.60 views

USN-2796-1: Linux kernel (OMAP4) vulnerabilities

Dmitry Vyukov discovered that the Linux kernel did not properly initialize IPC object state in certain situations. A local attacker could use this to escalate their privileges, expose confidential information, or cause a denial of service system crash. CVE-2015-7613 It was discovered that the Lin...

6.9CVSS6.7AI score0.05059EPSS
Exploits1
Rows per page
Query Builder