2015-12-17 20:00:49 |
Serge Hallyn |
bug |
|
|
added bug |
2015-12-17 20:01:00 |
Serge Hallyn |
bug task added |
|
linux (Ubuntu) |
|
2015-12-17 20:01:07 |
Serge Hallyn |
bug task added |
|
lxc (Ubuntu) |
|
2015-12-17 20:01:17 |
Serge Hallyn |
bug |
|
|
added subscriber Andy Whitcroft |
2015-12-17 20:01:24 |
Serge Hallyn |
bug |
|
|
added subscriber Stéphane Graber |
2015-12-17 20:01:29 |
Serge Hallyn |
bug |
|
|
added subscriber Chris J Arges |
2015-12-17 20:01:40 |
Serge Hallyn |
bug |
|
|
added subscriber Brad Figg |
2015-12-17 20:02:42 |
Serge Hallyn |
bug |
|
|
added subscriber Luis Henriques |
2015-12-17 20:03:03 |
Serge Hallyn |
bug |
|
|
added subscriber Kamal Mostafa |
2015-12-17 20:04:23 |
Serge Hallyn |
bug |
|
|
added subscriber Tycho Andersen |
2015-12-17 20:08:10 |
Kamal Mostafa |
attachment added |
|
ptrace-being-capable-wrt-a-process-requires-mapped-u.patch https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1527374/+attachment/4536446/+files/ptrace-being-capable-wrt-a-process-requires-mapped-u.patch |
|
2015-12-17 20:44:44 |
Brad Figg |
nominated for series |
|
Ubuntu Wily |
|
2015-12-17 20:44:44 |
Brad Figg |
bug task added |
|
linux (Ubuntu Wily) |
|
2015-12-17 20:44:44 |
Brad Figg |
bug task added |
|
lxc (Ubuntu Wily) |
|
2015-12-17 20:44:44 |
Brad Figg |
bug task added |
|
lxd (Ubuntu Wily) |
|
2015-12-17 20:44:44 |
Brad Figg |
nominated for series |
|
Ubuntu Trusty |
|
2015-12-17 20:44:44 |
Brad Figg |
bug task added |
|
linux (Ubuntu Trusty) |
|
2015-12-17 20:44:44 |
Brad Figg |
bug task added |
|
lxc (Ubuntu Trusty) |
|
2015-12-17 20:44:44 |
Brad Figg |
bug task added |
|
lxd (Ubuntu Trusty) |
|
2015-12-17 20:44:44 |
Brad Figg |
nominated for series |
|
Ubuntu Xenial |
|
2015-12-17 20:44:44 |
Brad Figg |
bug task added |
|
linux (Ubuntu Xenial) |
|
2015-12-17 20:44:44 |
Brad Figg |
bug task added |
|
lxc (Ubuntu Xenial) |
|
2015-12-17 20:44:44 |
Brad Figg |
bug task added |
|
lxd (Ubuntu Xenial) |
|
2015-12-17 20:44:44 |
Brad Figg |
nominated for series |
|
Ubuntu Vivid |
|
2015-12-17 20:44:44 |
Brad Figg |
bug task added |
|
linux (Ubuntu Vivid) |
|
2015-12-17 20:44:44 |
Brad Figg |
bug task added |
|
lxc (Ubuntu Vivid) |
|
2015-12-17 20:44:44 |
Brad Figg |
bug task added |
|
lxd (Ubuntu Vivid) |
|
2015-12-17 20:45:12 |
Brad Figg |
bug task deleted |
lxd (Ubuntu Xenial) |
|
|
2015-12-17 20:45:18 |
Brad Figg |
bug task deleted |
lxd (Ubuntu Wily) |
|
|
2015-12-17 20:45:23 |
Brad Figg |
bug task deleted |
lxd (Ubuntu Vivid) |
|
|
2015-12-17 20:45:29 |
Brad Figg |
bug task deleted |
lxd (Ubuntu Trusty) |
|
|
2015-12-17 20:45:47 |
Brad Figg |
bug task deleted |
lxc (Ubuntu Xenial) |
|
|
2015-12-17 20:45:54 |
Brad Figg |
bug task deleted |
lxc (Ubuntu Wily) |
|
|
2015-12-17 20:46:01 |
Brad Figg |
bug task deleted |
lxc (Ubuntu Vivid) |
|
|
2015-12-17 20:46:08 |
Brad Figg |
bug task deleted |
lxc (Ubuntu Trusty) |
|
|
2015-12-17 21:19:01 |
Brad Figg |
bug task added |
|
linux-lts-vivid (Ubuntu) |
|
2015-12-17 21:19:31 |
Brad Figg |
bug task added |
|
linux-lts-wily (Ubuntu) |
|
2015-12-17 21:19:54 |
Brad Figg |
bug task added |
|
linux-lts-utopic (Ubuntu) |
|
2015-12-17 21:20:47 |
Brad Figg |
bug task added |
|
linux-lts-trusty (Ubuntu) |
|
2015-12-17 21:20:56 |
Brad Figg |
nominated for series |
|
Ubuntu Precise |
|
2015-12-17 21:20:56 |
Brad Figg |
bug task added |
|
linux (Ubuntu Precise) |
|
2015-12-17 21:20:56 |
Brad Figg |
bug task added |
|
lxc (Ubuntu Precise) |
|
2015-12-17 21:20:56 |
Brad Figg |
bug task added |
|
linux-lts-trusty (Ubuntu Precise) |
|
2015-12-17 21:20:56 |
Brad Figg |
bug task added |
|
linux-lts-utopic (Ubuntu Precise) |
|
2015-12-17 21:20:56 |
Brad Figg |
bug task added |
|
lxd (Ubuntu Precise) |
|
2015-12-17 21:20:56 |
Brad Figg |
bug task added |
|
linux-lts-vivid (Ubuntu Precise) |
|
2015-12-17 21:20:56 |
Brad Figg |
bug task added |
|
linux-lts-wily (Ubuntu Precise) |
|
2015-12-17 21:21:07 |
Brad Figg |
bug task deleted |
lxd (Ubuntu Precise) |
|
|
2015-12-17 21:21:13 |
Brad Figg |
bug task deleted |
lxc (Ubuntu Precise) |
|
|
2015-12-17 21:21:20 |
Brad Figg |
bug task deleted |
linux-lts-wily (Ubuntu Precise) |
|
|
2015-12-17 21:21:28 |
Brad Figg |
bug task deleted |
linux-lts-vivid (Ubuntu Precise) |
|
|
2015-12-17 21:21:38 |
Brad Figg |
bug task deleted |
linux-lts-utopic (Ubuntu Precise) |
|
|
2015-12-17 23:01:03 |
Steve Beattie |
linux-lts-trusty (Ubuntu Precise): importance |
Undecided |
Medium |
|
2015-12-17 23:01:04 |
Steve Beattie |
linux (Ubuntu Precise): status |
New |
Invalid |
|
2015-12-17 23:01:06 |
Steve Beattie |
linux (Ubuntu Precise): importance |
Undecided |
Medium |
|
2015-12-17 23:01:07 |
Steve Beattie |
linux (Ubuntu Wily): importance |
Undecided |
Medium |
|
2015-12-17 23:01:08 |
Steve Beattie |
linux (Ubuntu Xenial): importance |
Undecided |
Medium |
|
2015-12-17 23:01:10 |
Steve Beattie |
linux (Ubuntu Trusty): importance |
Undecided |
Medium |
|
2015-12-17 23:01:11 |
Steve Beattie |
linux (Ubuntu Vivid): importance |
Undecided |
Medium |
|
2015-12-17 23:01:13 |
Steve Beattie |
description |
A kernel bug in user namespaces allows root in a container to ptrace host-root-owned tasks during a window of opportunity during lxc-attach / 'lxc exec', before they drop privilege by doing setuid to the container root uid. |
[ptrace userns issue] |
|
2015-12-17 23:04:29 |
Steve Beattie |
description |
[ptrace userns issue] |
A kernel bug in user namespaces allows root in a container to ptrace host-root-owned tasks during a window of opportunity during lxc-attach / 'lxc exec', before they drop privilege by doing setuid to the container root uid. |
|
2015-12-18 18:41:14 |
Launchpad Janitor |
linux (Ubuntu Wily): status |
New |
Fix Released |
|
2015-12-18 18:41:14 |
Launchpad Janitor |
cve linked |
|
2015-8550 |
|
2015-12-18 18:41:14 |
Launchpad Janitor |
cve linked |
|
2015-8551 |
|
2015-12-18 18:41:14 |
Launchpad Janitor |
cve linked |
|
2015-8552 |
|
2015-12-18 18:41:14 |
Launchpad Janitor |
cve linked |
|
2015-8553 |
|
2015-12-18 18:41:13 |
Launchpad Janitor |
linux (Ubuntu Wily): status |
New |
Fix Released |
|
2015-12-18 18:41:47 |
Launchpad Janitor |
linux (Ubuntu Vivid): status |
New |
Fix Released |
|
2015-12-18 18:41:47 |
Launchpad Janitor |
linux (Ubuntu Vivid): status |
New |
Fix Released |
|
2015-12-18 18:42:17 |
Launchpad Janitor |
linux (Ubuntu Trusty): status |
New |
Fix Released |
|
2015-12-18 18:42:17 |
Launchpad Janitor |
linux (Ubuntu Trusty): status |
New |
Fix Released |
|
2015-12-18 18:42:41 |
Launchpad Janitor |
linux-lts-utopic (Ubuntu): status |
New |
Fix Released |
|
2015-12-18 18:42:42 |
Launchpad Janitor |
linux-lts-utopic (Ubuntu): status |
New |
Fix Released |
|
2015-12-18 18:43:11 |
Launchpad Janitor |
linux-lts-trusty (Ubuntu Precise): status |
New |
Fix Released |
|
2015-12-18 18:43:12 |
Launchpad Janitor |
linux-lts-trusty (Ubuntu Precise): status |
New |
Fix Released |
|
2015-12-18 18:43:50 |
Launchpad Janitor |
linux-raspi2 (Ubuntu): status |
New |
Fix Released |
|
2015-12-18 18:43:51 |
Launchpad Janitor |
linux-raspi2 (Ubuntu): status |
New |
Fix Released |
|
2015-12-18 19:58:24 |
John Johansen |
cve unlinked |
2015-8550 |
|
|
2015-12-18 19:58:40 |
John Johansen |
cve unlinked |
2015-8551 |
|
|
2015-12-18 19:59:00 |
John Johansen |
cve unlinked |
2015-8552 |
|
|
2015-12-18 19:59:18 |
Kamal Mostafa |
cve unlinked |
2015-8553 |
|
|
2015-12-18 20:01:31 |
John Johansen |
information type |
Private Security |
Public Security |
|
2015-12-18 20:19:00 |
Ubuntu Foundations Team Bug Bot |
tags |
|
patch |
|
2015-12-18 20:19:21 |
Ubuntu Foundations Team Bug Bot |
bug |
|
|
added subscriber Joseph Salisbury |
2015-12-18 20:30:09 |
Brad Figg |
linux (Ubuntu): status |
New |
Incomplete |
|
2015-12-19 11:45:33 |
Launchpad Janitor |
linux-lts-vivid (Ubuntu): status |
New |
Fix Released |
|
2015-12-19 11:45:33 |
Launchpad Janitor |
cve linked |
|
2015-8550 |
|
2015-12-19 11:45:33 |
Launchpad Janitor |
cve linked |
|
2015-8551 |
|
2015-12-19 11:45:33 |
Launchpad Janitor |
cve linked |
|
2015-8552 |
|
2015-12-19 11:45:33 |
Launchpad Janitor |
cve linked |
|
2015-8553 |
|
2015-12-19 11:45:34 |
Launchpad Janitor |
linux-lts-vivid (Ubuntu): status |
New |
Fix Released |
|
2015-12-19 11:46:00 |
Launchpad Janitor |
linux-lts-wily (Ubuntu): status |
New |
Fix Released |
|
2015-12-19 11:46:01 |
Launchpad Janitor |
linux-lts-wily (Ubuntu): status |
New |
Fix Released |
|
2016-01-04 00:59:08 |
Stéphane Graber |
bug task deleted |
lxd (Ubuntu) |
|
|
2016-01-05 00:48:55 |
Steve Beattie |
cve linked |
|
2015-8709 |
|
2016-01-05 00:50:18 |
Steve Beattie |
cve unlinked |
2015-8550 |
|
|
2016-01-05 00:50:26 |
Steve Beattie |
cve unlinked |
2015-8551 |
|
|
2016-01-05 00:50:37 |
Steve Beattie |
cve unlinked |
2015-8552 |
|
|
2016-01-05 00:50:47 |
Steve Beattie |
cve unlinked |
2015-8553 |
|
|
2016-01-05 22:56:29 |
Andy Whitcroft |
linux (Ubuntu Xenial): status |
Incomplete |
Fix Committed |
|
2016-01-06 01:38:48 |
Mathew Hodson |
summary |
privilege escalation on attach through ptrace |
CVE-2015-8709 |
|
2016-01-06 02:03:15 |
Launchpad Janitor |
linux-armadaxp (Ubuntu): status |
New |
Confirmed |
|
2016-01-06 02:03:15 |
Launchpad Janitor |
linux-flo (Ubuntu): status |
New |
Confirmed |
|
2016-01-06 02:03:15 |
Launchpad Janitor |
linux-goldfish (Ubuntu): status |
New |
Confirmed |
|
2016-01-06 02:03:15 |
Launchpad Janitor |
linux-lts-quantal (Ubuntu): status |
New |
Confirmed |
|
2016-01-06 02:03:15 |
Launchpad Janitor |
linux-lts-raring (Ubuntu): status |
New |
Confirmed |
|
2016-01-06 02:03:15 |
Launchpad Janitor |
linux-lts-saucy (Ubuntu): status |
New |
Confirmed |
|
2016-01-06 02:03:15 |
Launchpad Janitor |
linux-lts-trusty (Ubuntu): status |
New |
Confirmed |
|
2016-01-06 02:03:15 |
Launchpad Janitor |
linux-mako (Ubuntu): status |
New |
Confirmed |
|
2016-01-06 02:03:15 |
Launchpad Janitor |
linux-manta (Ubuntu): status |
New |
Confirmed |
|
2016-01-06 02:03:15 |
Launchpad Janitor |
linux-ti-omap4 (Ubuntu): status |
New |
Confirmed |
|
2016-01-06 02:03:15 |
Launchpad Janitor |
lxc (Ubuntu): status |
New |
Confirmed |
|
2016-01-06 02:07:18 |
Mathew Hodson |
tags |
patch |
kernel-cve-tracking-bug patch |
|
2016-01-19 15:21:14 |
Launchpad Janitor |
linux (Ubuntu Xenial): status |
Fix Committed |
Fix Released |
|
2016-01-19 15:21:14 |
Launchpad Janitor |
cve linked |
|
2015-8660 |
|
2016-02-10 21:40:01 |
Steve Beattie |
description |
A kernel bug in user namespaces allows root in a container to ptrace host-root-owned tasks during a window of opportunity during lxc-attach / 'lxc exec', before they drop privilege by doing setuid to the container root uid. |
** DISPUTED ** kernel/ptrace.c in the Linux kernel through 4.4.1 mishandles uid and gid mappings, which allows local users to gain privileges by establishing a user namespace, waiting for a root process to enter that namespace with an unsafe uid or gid, and then using the ptrace system call. NOTE: the vendor states "there is no kernel bug here." |
|
2016-02-24 12:42:53 |
Launchpad Janitor |
branch linked |
|
lp:ubuntu/trusty-security/linux-lts-vivid |
|
2016-02-24 12:44:17 |
Launchpad Janitor |
branch linked |
|
lp:ubuntu/trusty-proposed/linux-lts-vivid |
|
2016-02-24 13:04:36 |
Launchpad Janitor |
branch linked |
|
lp:~ubuntu-branches/ubuntu/trusty/linux-lts-wily/trusty-security |
|
2016-02-24 13:07:51 |
Launchpad Janitor |
branch linked |
|
lp:~ubuntu-branches/ubuntu/trusty/linux-lts-wily/trusty-proposed |
|
2016-02-28 07:56:21 |
Mathew Hodson |
bug task deleted |
linux-lts-trusty (Ubuntu) |
|
|
2016-02-28 07:57:51 |
Mathew Hodson |
linux-lts-quantal (Ubuntu): importance |
Undecided |
Medium |
|
2016-02-28 07:57:51 |
Mathew Hodson |
linux-lts-quantal (Ubuntu): status |
Confirmed |
Won't Fix |
|
2016-02-28 07:58:11 |
Mathew Hodson |
linux-lts-raring (Ubuntu): importance |
Undecided |
Medium |
|
2016-02-28 07:58:11 |
Mathew Hodson |
linux-lts-raring (Ubuntu): status |
Confirmed |
Won't Fix |
|
2016-02-28 07:58:36 |
Mathew Hodson |
linux-lts-saucy (Ubuntu): importance |
Undecided |
Medium |
|
2016-02-28 07:58:36 |
Mathew Hodson |
linux-lts-saucy (Ubuntu): status |
Confirmed |
Won't Fix |
|
2016-04-27 17:03:56 |
Steve Beattie |
nominated for series |
|
Ubuntu Yakkety |
|
2016-05-11 18:23:37 |
Steve Beattie |
description |
** DISPUTED ** kernel/ptrace.c in the Linux kernel through 4.4.1 mishandles uid and gid mappings, which allows local users to gain privileges by establishing a user namespace, waiting for a root process to enter that namespace with an unsafe uid or gid, and then using the ptrace system call. NOTE: the vendor states "there is no kernel bug here." |
** DISPUTED ** kernel/ptrace.c in the Linux kernel through 4.4.1 mishandles uid and gid mappings, which allows local users to gain privileges by establishing a user namespace, waiting for a root process to enter that namespace with an unsafe uid or gid, and then using the ptrace system call. NOTE: the vendor states "there is no kernel bug here."
Break-Fix: - local-2015-8709 |
|
2020-03-26 01:47:51 |
Stéphane Graber |
bug task deleted |
lxc (Ubuntu) |
|
|