CVE 2017-5551
The simple_set_acl function in fs/posix_acl.c in the Linux kernel before 4.9.6 preserves the setgid bit during a setxattr call involving a tmpfs filesystem, which allows local users to gain group privileges by leveraging the existence of a setgid program with restrictions on execute permissions. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-7097.
Related bugs and status
CVE-2017-5551 (Candidate) is related to these bugs:
Bug #1239087: Safely remove is not working (or broken) in Gnome Disks
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1239087 | Safely remove is not working (or broken) in Gnome Disks | gnome-disk-utility (Ubuntu) | Undecided | New | ||
Bug #792085: Automatic remount of safely removed USB 3.0 drive
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 792085 | Automatic remount of safely removed USB 3.0 drive | linux (Fedora) | Undecided | Fix Released | ||
| 792085 | Automatic remount of safely removed USB 3.0 drive | linux (openSUSE) | Medium | Fix Released | ||
| 792085 | Automatic remount of safely removed USB 3.0 drive | linux (Ubuntu) | Medium | Fix Released | ||
| 792085 | Automatic remount of safely removed USB 3.0 drive | linux (Ubuntu Yakkety) | Medium | Fix Released | ||
| 792085 | Automatic remount of safely removed USB 3.0 drive | linux (Ubuntu Xenial) | Medium | Fix Released | ||
| 792085 | Automatic remount of safely removed USB 3.0 drive | linux (Ubuntu Trusty) | Medium | Triaged | ||
Bug #1696436: arm64: 'reboot' doesn't work, needs to pull the plug
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1696436 | arm64: 'reboot' doesn't work, needs to pull the plug | linux-raspi2 (Ubuntu) | Undecided | New | ||
| 1696436 | arm64: 'reboot' doesn't work, needs to pull the plug | linux-raspi2 (Ubuntu Yakkety) | Medium | Fix Released | ||
Bug #1696445: OpenPower: Some multipaths temporarily have only a single path
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1696445 | OpenPower: Some multipaths temporarily have only a single path | linux (Ubuntu) | Undecided | Fix Released | ||
| 1696445 | OpenPower: Some multipaths temporarily have only a single path | The Ubuntu-power-systems project | Undecided | Fix Released | ||
| 1696445 | OpenPower: Some multipaths temporarily have only a single path | linux (Ubuntu Yakkety) | Medium | Fix Released | ||
| 1696445 | OpenPower: Some multipaths temporarily have only a single path | linux (Ubuntu Zesty) | Medium | Fix Released | ||
| 1696445 | OpenPower: Some multipaths temporarily have only a single path | linux (Ubuntu Xenial) | Medium | Fix Released | ||
Bug #1698264: Processes in "D" state due to zap_pid_ns_processes kernel call with Ubuntu + Docker
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1698264 | Processes in "D" state due to zap_pid_ns_processes kernel call with Ubuntu + Docker | linux (Ubuntu) | Medium | Fix Released | ||
| 1698264 | Processes in "D" state due to zap_pid_ns_processes kernel call with Ubuntu + Docker | linux (Ubuntu Zesty) | Medium | Fix Released | ||
| 1698264 | Processes in "D" state due to zap_pid_ns_processes kernel call with Ubuntu + Docker | linux (Ubuntu Yakkety) | Medium | Fix Released | ||
| 1698264 | Processes in "D" state due to zap_pid_ns_processes kernel call with Ubuntu + Docker | linux (Ubuntu Xenial) | Medium | Fix Released | ||
Bug #1699651: KILLER1435-S[0489:e0a2] BT cannot search BT 4.0 device
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1699651 | KILLER1435-S[0489:e0a2] BT cannot search BT 4.0 device | linux (Ubuntu) | Undecided | Fix Released | ||
| 1699651 | KILLER1435-S[0489:e0a2] BT cannot search BT 4.0 device | HWE Next | Undecided | Fix Released | ||
| 1699651 | KILLER1435-S[0489:e0a2] BT cannot search BT 4.0 device | linux (Ubuntu Xenial) | Undecided | Fix Released | ||
| 1699651 | KILLER1435-S[0489:e0a2] BT cannot search BT 4.0 device | linux (Ubuntu Zesty) | Undecided | Fix Released | ||
| 1699651 | KILLER1435-S[0489:e0a2] BT cannot search BT 4.0 device | linux (Ubuntu Yakkety) | Undecided | Fix Released | ||
Bug #1701019: linux: 4.8.0-59.64 -proposed tracker
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1701019 | linux: 4.8.0-59.64 -proposed tracker | linux (Ubuntu) | Undecided | Invalid | ||
| 1701019 | linux: 4.8.0-59.64 -proposed tracker | Kernel SRU Workflow | Medium | Fix Released | ||
| 1701019 | linux: 4.8.0-59.64 -proposed tracker | Kernel SRU Workflow automated-testing | Medium | Fix Released | ||
| 1701019 | linux: 4.8.0-59.64 -proposed tracker | Kernel SRU Workflow certification-testing | Medium | Fix Released | ||
| 1701019 | linux: 4.8.0-59.64 -proposed tracker | Kernel SRU Workflow prepare-package | Medium | Fix Released | ||
| 1701019 | linux: 4.8.0-59.64 -proposed tracker | Kernel SRU Workflow prepare-package-meta | Medium | Fix Released | ||
| 1701019 | linux: 4.8.0-59.64 -proposed tracker | Kernel SRU Workflow prepare-package-signed | Medium | Fix Released | ||
| 1701019 | linux: 4.8.0-59.64 -proposed tracker | Kernel SRU Workflow promote-to-proposed | Medium | Fix Released | ||
| 1701019 | linux: 4.8.0-59.64 -proposed tracker | Kernel SRU Workflow promote-to-security | Medium | Fix Released | ||
| 1701019 | linux: 4.8.0-59.64 -proposed tracker | Kernel SRU Workflow promote-to-updates | Medium | Fix Released | ||
| 1701019 | linux: 4.8.0-59.64 -proposed tracker | Kernel SRU Workflow regression-testing | Medium | Fix Released | ||
| 1701019 | linux: 4.8.0-59.64 -proposed tracker | Kernel SRU Workflow security-signoff | Medium | Fix Released | ||
| 1701019 | linux: 4.8.0-59.64 -proposed tracker | Kernel SRU Workflow upload-to-ppa | Medium | Invalid | ||
| 1701019 | linux: 4.8.0-59.64 -proposed tracker | Kernel SRU Workflow verification-testing | Medium | Fix Released | ||
| 1701019 | linux: 4.8.0-59.64 -proposed tracker | linux (Ubuntu Yakkety) | Undecided | Fix Released | ||
Bug #1701020: linux-raspi2: 4.8.0-1043.47 -proposed tracker
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1701020 | linux-raspi2: 4.8.0-1043.47 -proposed tracker | linux-raspi2 (Ubuntu) | Undecided | Invalid | ||
| 1701020 | linux-raspi2: 4.8.0-1043.47 -proposed tracker | Kernel SRU Workflow | Medium | Fix Released | ||
| 1701020 | linux-raspi2: 4.8.0-1043.47 -proposed tracker | Kernel SRU Workflow automated-testing | Medium | Fix Released | ||
| 1701020 | linux-raspi2: 4.8.0-1043.47 -proposed tracker | Kernel SRU Workflow certification-testing | Medium | Fix Released | ||
| 1701020 | linux-raspi2: 4.8.0-1043.47 -proposed tracker | Kernel SRU Workflow prepare-package | Medium | Fix Released | ||
| 1701020 | linux-raspi2: 4.8.0-1043.47 -proposed tracker | Kernel SRU Workflow prepare-package-meta | Medium | Fix Released | ||
| 1701020 | linux-raspi2: 4.8.0-1043.47 -proposed tracker | Kernel SRU Workflow promote-to-proposed | Medium | Fix Released | ||
| 1701020 | linux-raspi2: 4.8.0-1043.47 -proposed tracker | Kernel SRU Workflow promote-to-security | Medium | Fix Released | ||
| 1701020 | linux-raspi2: 4.8.0-1043.47 -proposed tracker | Kernel SRU Workflow promote-to-updates | Medium | Fix Released | ||
| 1701020 | linux-raspi2: 4.8.0-1043.47 -proposed tracker | Kernel SRU Workflow regression-testing | Medium | Invalid | ||
| 1701020 | linux-raspi2: 4.8.0-1043.47 -proposed tracker | Kernel SRU Workflow security-signoff | Medium | Fix Released | ||
| 1701020 | linux-raspi2: 4.8.0-1043.47 -proposed tracker | Kernel SRU Workflow upload-to-ppa | Medium | Invalid | ||
| 1701020 | linux-raspi2: 4.8.0-1043.47 -proposed tracker | Kernel SRU Workflow verification-testing | Medium | Fix Released | ||
| 1701020 | linux-raspi2: 4.8.0-1043.47 -proposed tracker | linux-raspi2 (Ubuntu Yakkety) | Undecided | Fix Released | ||
See the 
CVE page on Mitre.org
for more details.
