Lucene search
+L

383 matches found

nvd
nvd
added 2014/06/23 11:21 a.m.21 views

CVE-2014-4014

The capabilities implementation in the Linux kernel before 3.14.8 does not properly consider that namespaces are inapplicable to inodes, which allows local users to bypass intended chmod restrictions by first creating a user namespace, as demonstrated by setting the setgid bit on a file with grou...

6.2CVSS7.2AI score0.03303EPSS
Exploits4References10
osv
osv
added 2014/06/23 11:21 a.m.9 views

CVE-2014-4014

The capabilities implementation in the Linux kernel before 3.14.8 does not properly consider that namespaces are inapplicable to inodes, which allows local users to bypass intended chmod restrictions by first creating a user namespace, as demonstrated by setting the setgid bit on a file with grou...

6.8AI score
Exploits0References12
prion
prion
added 2014/06/23 11:21 a.m.28 views

Design/Logic Flaw

The capabilities implementation in the Linux kernel before 3.14.8 does not properly consider that namespaces are inapplicable to inodes, which allows local users to bypass intended chmod restrictions by first creating a user namespace, as demonstrated by setting the setgid bit on a file with grou...

6.2CVSS6.5AI score0.03303EPSS
Exploits4References10Affected Software1
cve
cve
added 2014/06/23 10:0 a.m.110 views

CVE-2014-4014

The CVE-2014-4014 issue is a Linux kernel local privilege escalation affecting versions before 3.14.8. The root cause is that namespaces are inapplicable to inodes, allowing a local user who creates a user namespace to bypass chmod restrictions by setting the setgid bit on a file with root group ...

6.2CVSS5.9AI score0.03303EPSS
Exploits4References10Affected Software1
ubuntucve
ubuntucve
added 2014/06/23 12:0 a.m.37 views

CVE-2014-4014

The capabilities implementation in the Linux kernel before 3.14.8 does not properly consider that namespaces are inapplicable to inodes, which allows local users to bypass intended chmod restrictions by first creating a user namespace, as demonstrated by setting the setgid bit on a file with grou...

6.2CVSS6.5AI score0.03303EPSS
Exploits4References7
securityvulns
securityvulns
added 2014/06/17 12:0 a.m.67 views

[oss-security] CVE-2014-4014: Linux kernel user namespace bug

The internal function inodecapable was used inappropriately. Depending on configuration, this may be usable to escalate privileges. A cursory inspection of my Fedora box suggests that it is not vulnerable to the obvious way to exploit this bug. The fix should appear in Linus' -master shortly, and...

6.2CVSS7.5AI score0.03303EPSS
Exploits4
securityvulns
securityvulns
added 2013/10/01 12:0 a.m.72 views

[USN-1974-1] Linux kernel vulnerabilities

========================================================================== Ubuntu Security Notice USN-1974-1 September 27, 2013 linux vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

6.9CVSS6.9AI score0.00452EPSS
Exploits2
nessus
nessus
added 2013/09/28 12:0 a.m.32 views

Ubuntu 12.04 LTS : linux-lts-raring vulnerabilities (USN-1971-1)

Vince Weaver discovered a flaw in the perf subsystem of the Linux kernel on ARM platforms. A local user could exploit this flaw to gain privileges or cause a denial of service system crash. CVE-2013-4254 A memory leak was discovered in the user namespace facility of the Linux kernel. A local user...

6.9CVSS6.4AI score0.00452EPSS
Exploits2References3
nessus
nessus
added 2013/09/28 12:0 a.m.35 views

Ubuntu 13.04 : linux vulnerabilities (USN-1974-1)

Vince Weaver discovered a flaw in the perf subsystem of the Linux kernel on ARM platforms. A local user could exploit this flaw to gain privileges or cause a denial of service system crash. CVE-2013-4254 A memory leak was discovered in the user namespace facility of the Linux kernel. A local user...

6.9CVSS6.4AI score0.00452EPSS
Exploits2References3
ubuntu
ubuntu
added 2013/09/27 12:47 p.m.61 views

USN-1974-1: Linux kernel vulnerabilities

Vince Weaver discovered a flaw in the perf subsystem of the Linux kernel on ARM platforms. A local user could exploit this flaw to gain privileges or cause a denial of service system crash. CVE-2013-4254 A memory leak was discovered in the user namespace facility of the Linux kernel. A local user...

6.9CVSS6.4AI score0.00452EPSS
Exploits2
ubuntu
ubuntu
added 2013/09/27 12:42 p.m.59 views

USN-1971-1: Linux kernel (Raring HWE) vulnerabilities

Vince Weaver discovered a flaw in the perf subsystem of the Linux kernel on ARM platforms. A local user could exploit this flaw to gain privileges or cause a denial of service system crash. CVE-2013-4254 A memory leak was discovered in the user namespace facility of the Linux kernel. A local user...

6.9CVSS6.4AI score0.00452EPSS
Exploits2
osv
osv
added 2013/08/25 3:27 a.m.1 views

DEBIAN-CVE-2013-4205

Memory leak in the unshareuserns function in kernel/usernamespace.c in the Linux kernel before 3.10.6 allows local users to cause a denial of service memory consumption via an invalid CLONENEWUSER unshare call...

4.7CVSS5.7AI score0.00452EPSS
Exploits2References1
osv
osv
added 2013/08/24 12:0 a.m.3 views

UBUNTU-CVE-2013-4205

Memory leak in the unshareuserns function in kernel/usernamespace.c in the Linux kernel before 3.10.6 allows local users to cause a denial of service memory consumption via an invalid CLONENEWUSER unshare call...

4.7CVSS6.5AI score0.00452EPSS
Exploits2References4
exploitpack
exploitpack
added 2013/05/14 12:0 a.m.15 views

Linux Kernel 3.8.x - open-time Capability file_ns_capable() Local Privilege Escalation

Linux Kernel 3.8.x - open-time Capability filenscapable Local Privilege Escalation / usernsrootsploit.c by / / Copyright c 2013 Andrew Lutomirski. All rights reserved. / / You may use, modify, and redistribute this code under the GPLv2. / define GNUSOURCE include include include include include...

0.6AI score
Exploits0
exploitdb
exploitdb
added 2013/05/14 12:0 a.m.408 views

Linux Kernel < 3.8.x - open-time Capability 'file_ns_capable()' Local Privilege Escalation

/ usernsrootsploit.c by / / Copyright c 2013 Andrew Lutomirski. All rights reserved. / / You may use, modify, and redistribute this code under the GPLv2. / define GNUSOURCE include include include include include include include include include include include include include ifndef CLONENEWUSER...

7AI score
Exploits0
osv
osv
added 2013/05/03 11:57 a.m.2 views

DEBIAN-CVE-2013-1959

kernel/usernamespace.c in the Linux kernel before 3.8.9 does not have appropriate capability requirements for the uidmap and gidmap files, which allows local users to gain privileges by opening a file within an unprivileged process and then modifying the file within a privileged process...

3.7CVSS6.5AI score0.01255EPSS
Exploits2References1
prion
prion
added 2013/05/03 11:57 a.m.21 views

Design/Logic Flaw

kernel/usernamespace.c in the Linux kernel before 3.8.9 does not have appropriate capability requirements for the uidmap and gidmap files, which allows local users to gain privileges by opening a file within an unprivileged process and then modifying the file within a privileged process...

3.7CVSS6.8AI score0.01255EPSS
Exploits2References7Affected Software1
ubuntucve
ubuntucve
added 2013/04/26 12:0 a.m.24 views

CVE-2013-1959

kernel/usernamespace.c in the Linux kernel before 3.8.9 does not have appropriate capability requirements for the uidmap and gidmap files, which allows local users to gain privileges by opening a file within an unprivileged process and then modifying the file within a privileged process...

3.7CVSS5.9AI score0.01255EPSS
Exploits2References2
osv
osv
added 2013/04/26 12:0 a.m.3 views

UBUNTU-CVE-2013-1959

kernel/usernamespace.c in the Linux kernel before 3.8.9 does not have appropriate capability requirements for the uidmap and gidmap files, which allows local users to gain privileges by opening a file within an unprivileged process and then modifying the file within a privileged process...

3.7CVSS5.8AI score0.01255EPSS
Exploits2References3
osv
osv
added 2013/04/24 7:55 p.m.4 views

DEBIAN-CVE-2013-1958

The scmcheckcreds function in net/core/scm.c in the Linux kernel before 3.8.6 does not properly enforce capability requirements for controlling the PID value associated with a UNIX domain socket, which allows local users to bypass intended access restrictions by leveraging the time interval durin...

1.9CVSS6.2AI score0.0034EPSS
Exploits1References1
Rows per page
Query Builder