Lucene search
K

235 matches found

OSV
OSV
added 2014/08/18 11:15 a.m.1 views

DEBIAN-CVE-2014-5206

The doremount function in fs/namespace.c in the Linux kernel through 3.16.1 does not maintain the MNTLOCKREADONLY bit across a remount of a bind mount, which allows local users to bypass an intended read-only restriction and defeat certain sandbox protection mechanisms via a "mount -o remount"...

7.2CVSS7.8AI score0.00368EPSS
Exploits0References1
Prion
Prion
added 2014/08/18 11:15 a.m.18 views

Design/Logic Flaw

The doremount function in fs/namespace.c in the Linux kernel through 3.16.1 does not maintain the MNTLOCKREADONLY bit across a remount of a bind mount, which allows local users to bypass an intended read-only restriction and defeat certain sandbox protection mechanisms via a "mount -o remount"...

7.2CVSS6.6AI score0.00368EPSS
Exploits0References7Affected Software2
Cvelist
Cvelist
added 2014/08/18 10:0 a.m.23 views

CVE-2014-5207

fs/namespace.c in the Linux kernel through 3.16.1 does not properly restrict clearing MNTNODEV, MNTNOSUID, and MNTNOEXEC and changing MNTATIMEMASK during a remount of a bind mount, which allows local users to gain privileges, interfere with backups and auditing on systems that had atime enabled, ...

8.1AI score0.00888EPSS
Exploits6References12
Debian CVE
Debian CVE
added 2014/08/18 10:0 a.m.27 views

CVE-2014-5207

fs/namespace.c in the Linux kernel through 3.16.1 does not properly restrict clearing MNTNODEV, MNTNOSUID, and MNTNOEXEC and changing MNTATIMEMASK during a remount of a bind mount, which allows local users to gain privileges, interfere with backups and auditing on systems that had atime enabled, ...

6.2CVSS6.4AI score0.00888EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2014/08/17 12:0 a.m.44 views

Fedora 20 : kernel-3.15.10-200.fc20 (2014-9466)

The 3.15.10 stable update contains a number of important fixes across the tree. Fix CVE-2014-5206, CVE-2014-5207: ro bind mount bypass with namespaces Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted...

7.2CVSS6.8AI score0.00888EPSS
Exploits6References4
UbuntuCve
UbuntuCve
added 2014/08/13 12:0 a.m.28 views

CVE-2014-5206

The doremount function in fs/namespace.c in the Linux kernel through 3.16.1 does not maintain the MNTLOCKREADONLY bit across a remount of a bind mount, which allows local users to bypass an intended read-only restriction and defeat certain sandbox protection mechanisms via a "mount -o remount"...

7.2CVSS6.8AI score0.00368EPSS
Exploits0References4
OSV
OSV
added 2014/08/13 12:0 a.m.3 views

UBUNTU-CVE-2014-5207

fs/namespace.c in the Linux kernel through 3.16.1 does not properly restrict clearing MNTNODEV, MNTNOSUID, and MNTNOEXEC and changing MNTATIMEMASK during a remount of a bind mount, which allows local users to gain privileges, interfere with backups and auditing on systems that had atime enabled, ...

6.2CVSS6.7AI score0.00888EPSS
Exploits6References6
OSV
OSV
added 2014/08/13 12:0 a.m.3 views

UBUNTU-CVE-2014-5206

The doremount function in fs/namespace.c in the Linux kernel through 3.16.1 does not maintain the MNTLOCKREADONLY bit across a remount of a bind mount, which allows local users to bypass an intended read-only restriction and defeat certain sandbox protection mechanisms via a "mount -o remount"...

7.2CVSS6.7AI score0.00368EPSS
Exploits0References5
NVD
NVD
added 2013/11/23 6:55 p.m.17 views

CVE-2012-0787

The clonefile function in transfer.c in Augeas before 1.0.0, when copyifrenamefails is set and EXDEV or EBUSY is returned by the rename function, allows local users to overwrite arbitrary files and obtain sensitive information via a bind mount on the 1 .augsave or 2 destination file when using th...

3.7CVSS5.8AI score0.00413EPSS
Exploits1References5
OSV
OSV
added 2013/11/23 6:55 p.m.1 views

DEBIAN-CVE-2012-0787

The clonefile function in transfer.c in Augeas before 1.0.0, when copyifrenamefails is set and EXDEV or EBUSY is returned by the rename function, allows local users to overwrite arbitrary files and obtain sensitive information via a bind mount on the 1 .augsave or 2 destination file when using th...

3.7CVSS6.4AI score0.00413EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2013/11/23 6:55 p.m.25 views

CVE-2012-0787

The clonefile function in transfer.c in Augeas before 1.0.0, when copyifrenamefails is set and EXDEV or EBUSY is returned by the rename function, allows local users to overwrite arbitrary files and obtain sensitive information via a bind mount on the 1 .augsave or 2 destination file when using th...

3.7CVSS6AI score0.00413EPSS
Exploits1References1
Prion
Prion
added 2013/11/23 6:55 p.m.21 views

Information disclosure

The clonefile function in transfer.c in Augeas before 1.0.0, when copyifrenamefails is set and EXDEV or EBUSY is returned by the rename function, allows local users to overwrite arbitrary files and obtain sensitive information via a bind mount on the 1 .augsave or 2 destination file when using th...

3.7CVSS6.3AI score0.00413EPSS
Exploits1References5Affected Software2
Cvelist
Cvelist
added 2013/11/23 6:0 p.m.27 views

CVE-2012-0787

The clonefile function in transfer.c in Augeas before 1.0.0, when copyifrenamefails is set and EXDEV or EBUSY is returned by the rename function, allows local users to overwrite arbitrary files and obtain sensitive information via a bind mount on the 1 .augsave or 2 destination file when using th...

5.7AI score0.00413EPSS
Exploits1References5
Debian CVE
Debian CVE
added 2013/11/23 6:0 p.m.26 views

CVE-2012-0787

The clonefile function in transfer.c in Augeas before 1.0.0, when copyifrenamefails is set and EXDEV or EBUSY is returned by the rename function, allows local users to overwrite arbitrary files and obtain sensitive information via a bind mount on the 1 .augsave or 2 destination file when using th...

3.7CVSS5.8AI score0.00413EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2006/05/19 12:0 a.m.53 views

Mandrake Linux Security Advisory : kernel (MDKSA-2006:086)

A number of vulnerabilities were discovered and corrected in the Linux 2.6 kernel : Prior to Linux kernel 2.6.16.5, the kernel does not properly handle uncanonical return addresses on Intel EM64T CPUs which causes the kernel exception handler to run on the user stack with the wrong GS...

7.8CVSS5.8AI score0.04342EPSS
Exploits0References9
Rows per page
Query Builder