CVE-2014-4014
Bug #1329103 reported by
John Johansen
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | ||
---|---|---|---|---|---|---|
linux (Ubuntu) |
Invalid
|
Medium
|
Unassigned | |||
Precise |
Invalid
|
Medium
|
Unassigned | |||
Trusty |
Fix Released
|
Medium
|
Unassigned | |||
Vivid |
Invalid
|
Medium
|
Unassigned | |||
Wily |
Invalid
|
Medium
|
Unassigned | |||
linux-armadaxp (Ubuntu) |
Invalid
|
Medium
|
Unassigned | |||
Precise |
Invalid
|
Medium
|
Unassigned | |||
Trusty |
Invalid
|
Medium
|
Unassigned | |||
Vivid |
Invalid
|
Medium
|
Unassigned | |||
Wily |
Invalid
|
Medium
|
Unassigned | |||
linux-ec2 (Ubuntu) |
Invalid
|
Medium
|
Unassigned | |||
Precise |
Invalid
|
Medium
|
Unassigned | |||
Trusty |
Invalid
|
Medium
|
Unassigned | |||
Vivid |
Invalid
|
Medium
|
Unassigned | |||
Wily |
Invalid
|
Medium
|
Unassigned | |||
linux-flo (Ubuntu) |
Invalid
|
Medium
|
Unassigned | |||
Precise |
Invalid
|
Medium
|
Unassigned | |||
Vivid |
Invalid
|
Medium
|
Unassigned | |||
Wily |
Invalid
|
Medium
|
Unassigned | |||
linux-fsl-imx51 (Ubuntu) |
Invalid
|
Medium
|
Unassigned | |||
Precise |
Invalid
|
Medium
|
Unassigned | |||
Trusty |
Invalid
|
Medium
|
Unassigned | |||
Vivid |
Invalid
|
Medium
|
Unassigned | |||
Wily |
Invalid
|
Medium
|
Unassigned | |||
linux-goldfish (Ubuntu) |
Invalid
|
Medium
|
Unassigned | |||
Precise |
Invalid
|
Medium
|
Unassigned | |||
Vivid |
Invalid
|
Medium
|
Unassigned | |||
Wily |
Invalid
|
Medium
|
Unassigned | |||
linux-lts-backport-maverick (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | |||
Lucid |
Won't Fix
|
Undecided
|
Unassigned | |||
Precise |
Won't Fix
|
Undecided
|
Unassigned | |||
Saucy |
Won't Fix
|
Undecided
|
Unassigned | |||
Trusty |
Won't Fix
|
Undecided
|
Unassigned | |||
Utopic |
Won't Fix
|
Undecided
|
Unassigned | |||
Vivid |
New
|
Undecided
|
Unassigned | |||
Wily |
Invalid
|
Undecided
|
Unassigned | |||
linux-lts-backport-natty (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | |||
Lucid |
Won't Fix
|
Undecided
|
Unassigned | |||
Precise |
Won't Fix
|
Undecided
|
Unassigned | |||
Saucy |
Won't Fix
|
Undecided
|
Unassigned | |||
Trusty |
Won't Fix
|
Undecided
|
Unassigned | |||
Utopic |
Won't Fix
|
Undecided
|
Unassigned | |||
Vivid |
New
|
Undecided
|
Unassigned | |||
Wily |
Invalid
|
Undecided
|
Unassigned | |||
linux-lts-quantal (Ubuntu) |
Invalid
|
Medium
|
Unassigned | |||
Precise |
Fix Released
|
Medium
|
Unassigned | |||
Trusty |
Invalid
|
Medium
|
Unassigned | |||
Vivid |
Invalid
|
Medium
|
Unassigned | |||
Wily |
Invalid
|
Medium
|
Unassigned | |||
linux-lts-raring (Ubuntu) |
Invalid
|
Medium
|
Unassigned | |||
Precise |
Fix Released
|
Medium
|
Unassigned | |||
Trusty |
Invalid
|
Medium
|
Unassigned | |||
Vivid |
Invalid
|
Medium
|
Unassigned | |||
Wily |
Invalid
|
Medium
|
Unassigned | |||
linux-lts-saucy (Ubuntu) |
Invalid
|
Medium
|
Unassigned | |||
Precise |
Fix Released
|
Medium
|
Unassigned | |||
Trusty |
Invalid
|
Medium
|
Unassigned | |||
Vivid |
Invalid
|
Medium
|
Unassigned | |||
Wily |
Invalid
|
Medium
|
Unassigned | |||
linux-lts-trusty (Ubuntu) | ||||||
Precise |
Fix Released
|
Medium
|
Unassigned | |||
linux-lts-utopic (Ubuntu) |
Invalid
|
Medium
|
Unassigned | |||
Precise |
Invalid
|
Medium
|
Unassigned | |||
Vivid |
Invalid
|
Medium
|
Unassigned | |||
Wily |
Invalid
|
Medium
|
Unassigned | |||
linux-lts-vivid (Ubuntu) |
Invalid
|
Medium
|
Unassigned | |||
Precise |
Invalid
|
Medium
|
Unassigned | |||
Vivid |
Invalid
|
Medium
|
Unassigned | |||
Wily |
Invalid
|
Medium
|
Unassigned | |||
linux-lts-wily (Ubuntu) |
New
|
Undecided
|
Unassigned | |||
Precise |
Invalid
|
Medium
|
Unassigned | |||
Vivid |
Invalid
|
Medium
|
Unassigned | |||
Wily |
Invalid
|
Medium
|
Unassigned | |||
linux-lts-xenial (Ubuntu) |
New
|
Undecided
|
Unassigned | |||
Precise |
Invalid
|
Medium
|
Unassigned | |||
Vivid |
New
|
Undecided
|
Unassigned | |||
Wily |
Invalid
|
Medium
|
Unassigned | |||
linux-mako (Ubuntu) |
Invalid
|
Medium
|
Unassigned | |||
Precise |
Invalid
|
Medium
|
Unassigned | |||
Vivid |
Invalid
|
Medium
|
Unassigned | |||
Wily |
Invalid
|
Medium
|
Unassigned | |||
linux-manta (Ubuntu) |
Invalid
|
Medium
|
Unassigned | |||
Precise |
Invalid
|
Medium
|
Unassigned | |||
Vivid |
Invalid
|
Medium
|
Unassigned | |||
Wily |
Invalid
|
Medium
|
Unassigned | |||
linux-mvl-dove (Ubuntu) |
Invalid
|
Medium
|
Unassigned | |||
Precise |
Invalid
|
Medium
|
Unassigned | |||
Trusty |
Invalid
|
Medium
|
Unassigned | |||
Vivid |
Invalid
|
Medium
|
Unassigned | |||
Wily |
Invalid
|
Medium
|
Unassigned | |||
linux-raspi2 (Ubuntu) |
New
|
Undecided
|
Unassigned | |||
Precise |
Invalid
|
Medium
|
Unassigned | |||
Vivid |
Invalid
|
Medium
|
Unassigned | |||
Wily |
Invalid
|
Medium
|
Unassigned | |||
linux-ti-omap4 (Ubuntu) |
Invalid
|
Medium
|
Unassigned | |||
Precise |
Invalid
|
Medium
|
Unassigned | |||
Trusty |
Invalid
|
Medium
|
Unassigned | |||
Vivid |
Invalid
|
Medium
|
Unassigned | |||
Wily |
Invalid
|
Medium
|
Unassigned |
Bug Description
The capabilities implementation in the Linux kernel before 3.14.8 does not properly consider that namespaces are inapplicable to inodes, which allows local users to bypass intended chmod restrictions by first creating a user namespace, as demonstrated by setting the setgid bit on a file with group ownership of root.
Break-Fix: 1a48e2ac034d47e
Changed in linux-mvl-dove (Ubuntu Precise): | |
importance: | Undecided → Medium |
Changed in linux-mvl-dove (Ubuntu Saucy): | |
importance: | Undecided → Medium |
Changed in linux-mvl-dove (Ubuntu Trusty): | |
importance: | Undecided → Medium |
Changed in linux-mvl-dove (Ubuntu Lucid): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-mvl-dove (Ubuntu Utopic): | |
importance: | Undecided → Medium |
Changed in linux-lts-saucy (Ubuntu Precise): | |
importance: | Undecided → Medium |
Changed in linux-lts-saucy (Ubuntu Saucy): | |
importance: | Undecided → Medium |
Changed in linux-lts-saucy (Ubuntu Trusty): | |
importance: | Undecided → Medium |
Changed in linux-lts-saucy (Ubuntu Lucid): | |
importance: | Undecided → Medium |
Changed in linux-lts-saucy (Ubuntu Utopic): | |
importance: | Undecided → Medium |
Changed in linux (Ubuntu Precise): | |
importance: | Undecided → Medium |
Changed in linux (Ubuntu Saucy): | |
importance: | Undecided → Medium |
Changed in linux (Ubuntu Trusty): | |
importance: | Undecided → Medium |
Changed in linux (Ubuntu Lucid): | |
importance: | Undecided → Medium |
Changed in linux (Ubuntu Utopic): | |
importance: | Undecided → Medium |
Changed in linux-ti-omap4 (Ubuntu Precise): | |
importance: | Undecided → Medium |
Changed in linux-ti-omap4 (Ubuntu Saucy): | |
importance: | Undecided → Medium |
Changed in linux-ti-omap4 (Ubuntu Trusty): | |
importance: | Undecided → Medium |
Changed in linux-ti-omap4 (Ubuntu Lucid): | |
importance: | Undecided → Medium |
Changed in linux-ti-omap4 (Ubuntu Utopic): | |
importance: | Undecided → Medium |
Changed in linux-fsl-imx51 (Ubuntu Precise): | |
importance: | Undecided → Medium |
Changed in linux-fsl-imx51 (Ubuntu Saucy): | |
importance: | Undecided → Medium |
Changed in linux-fsl-imx51 (Ubuntu Trusty): | |
importance: | Undecided → Medium |
Changed in linux-fsl-imx51 (Ubuntu Lucid): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-fsl-imx51 (Ubuntu Utopic): | |
importance: | Undecided → Medium |
Changed in linux-lts-raring (Ubuntu Precise): | |
importance: | Undecided → Medium |
Changed in linux-lts-raring (Ubuntu Saucy): | |
importance: | Undecided → Medium |
Changed in linux-lts-raring (Ubuntu Trusty): | |
importance: | Undecided → Medium |
Changed in linux-lts-raring (Ubuntu Lucid): | |
importance: | Undecided → Medium |
Changed in linux-lts-raring (Ubuntu Utopic): | |
importance: | Undecided → Medium |
Changed in linux-lts-backport-maverick (Ubuntu Lucid): | |
status: | New → Won't Fix |
Changed in linux-lts-backport-natty (Ubuntu Lucid): | |
status: | New → Won't Fix |
Changed in linux-lts-backport-maverick (Ubuntu Precise): | |
status: | New → Won't Fix |
Changed in linux-lts-backport-natty (Ubuntu Precise): | |
status: | New → Won't Fix |
Changed in linux-lts-backport-maverick (Ubuntu Saucy): | |
status: | New → Won't Fix |
Changed in linux-lts-backport-natty (Ubuntu Saucy): | |
status: | New → Won't Fix |
Changed in linux-lts-backport-maverick (Ubuntu Trusty): | |
status: | New → Won't Fix |
Changed in linux-lts-backport-natty (Ubuntu Trusty): | |
status: | New → Won't Fix |
Changed in linux-lts-backport-maverick (Ubuntu Utopic): | |
status: | New → Won't Fix |
Changed in linux-lts-backport-natty (Ubuntu Utopic): | |
status: | New → Won't Fix |
Changed in linux-lts-quantal (Ubuntu Precise): | |
status: | New → Fix Committed |
Changed in linux (Ubuntu Utopic): | |
status: | New → Fix Committed |
Changed in linux-lts-raring (Ubuntu Precise): | |
status: | New → Fix Committed |
description: | updated |
Changed in linux (Ubuntu Saucy): | |
status: | New → Fix Committed |
Changed in linux-lts-saucy (Ubuntu Precise): | |
status: | New → Fix Committed |
no longer affects: | linux-armadaxp (Ubuntu Saucy) |
no longer affects: | linux-ec2 (Ubuntu Saucy) |
no longer affects: | linux-lts-saucy (Ubuntu Saucy) |
no longer affects: | linux-lts-quantal (Ubuntu Saucy) |
no longer affects: | linux-mvl-dove (Ubuntu Saucy) |
no longer affects: | linux (Ubuntu Saucy) |
no longer affects: | linux-fsl-imx51 (Ubuntu Saucy) |
no longer affects: | linux-ti-omap4 (Ubuntu Saucy) |
no longer affects: | linux-lts-raring (Ubuntu Saucy) |
Changed in linux-lts-saucy (Ubuntu Precise): | |
status: | Fix Committed → Fix Released |
Changed in linux (Ubuntu Trusty): | |
status: | New → Fix Committed |
Changed in linux-armadaxp (Ubuntu Precise): | |
status: | New → Invalid |
Changed in linux-ec2 (Ubuntu Lucid): | |
status: | New → Invalid |
Changed in linux (Ubuntu Precise): | |
status: | New → Invalid |
Changed in linux (Ubuntu Lucid): | |
status: | New → Invalid |
Changed in linux-ti-omap4 (Ubuntu Precise): | |
status: | New → Invalid |
description: | updated |
Changed in linux (Ubuntu): | |
status: | Fix Committed → Invalid |
Changed in linux (Ubuntu Trusty): | |
status: | Fix Committed → Fix Released |
Changed in linux (Ubuntu Utopic): | |
status: | Fix Committed → Invalid |
Changed in linux-lts-backport-maverick (Ubuntu): | |
status: | New → Invalid |
Changed in linux-lts-backport-natty (Ubuntu): | |
status: | New → Invalid |
Changed in linux-lts-trusty (Ubuntu Precise): | |
status: | New → Fix Released |
no longer affects: | linux-lts-trusty (Ubuntu) |
no longer affects: | linux-lts-trusty (Ubuntu Lucid) |
no longer affects: | linux-lts-trusty (Ubuntu Trusty) |
no longer affects: | linux-lts-trusty (Ubuntu Utopic) |
no longer affects: | linux-armadaxp (Ubuntu Lucid) |
no longer affects: | linux-ec2 (Ubuntu Lucid) |
no longer affects: | linux-lts-saucy (Ubuntu Lucid) |
no longer affects: | linux-lts-quantal (Ubuntu Lucid) |
no longer affects: | linux-mvl-dove (Ubuntu Lucid) |
no longer affects: | linux (Ubuntu Lucid) |
no longer affects: | linux-fsl-imx51 (Ubuntu Lucid) |
no longer affects: | linux-ti-omap4 (Ubuntu Lucid) |
no longer affects: | linux-lts-raring (Ubuntu Lucid) |
Changed in linux-lts-trusty (Ubuntu Precise): | |
importance: | Undecided → Medium |
Changed in linux-lts-quantal (Ubuntu Vivid): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux (Ubuntu Vivid): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-ti-omap4 (Ubuntu Vivid): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-lts-raring (Ubuntu Vivid): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-armadaxp (Ubuntu Vivid): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-mvl-dove (Ubuntu Vivid): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-lts-saucy (Ubuntu Vivid): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-manta (Ubuntu Precise): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-manta (Ubuntu Wily): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-manta (Ubuntu Vivid): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-ec2 (Ubuntu Vivid): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-lts-vivid (Ubuntu Precise): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-lts-vivid (Ubuntu Vivid): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-lts-vivid (Ubuntu Wily): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-mako (Ubuntu Precise): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-mako (Ubuntu Wily): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-mako (Ubuntu Vivid): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-fsl-imx51 (Ubuntu Vivid): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-lts-utopic (Ubuntu Precise): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-lts-utopic (Ubuntu Vivid): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-lts-utopic (Ubuntu Wily): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-goldfish (Ubuntu Precise): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-goldfish (Ubuntu Wily): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-goldfish (Ubuntu Vivid): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-flo (Ubuntu Precise): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-flo (Ubuntu Wily): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-flo (Ubuntu Vivid): | |
status: | New → Invalid |
importance: | Undecided → Medium |
no longer affects: | linux-armadaxp (Ubuntu Utopic) |
no longer affects: | linux-ec2 (Ubuntu Utopic) |
no longer affects: | linux-lts-saucy (Ubuntu Utopic) |
no longer affects: | linux-lts-quantal (Ubuntu Utopic) |
no longer affects: | linux-mvl-dove (Ubuntu Utopic) |
no longer affects: | linux-ti-omap4 (Ubuntu Utopic) |
no longer affects: | linux (Ubuntu Utopic) |
no longer affects: | linux-fsl-imx51 (Ubuntu Utopic) |
no longer affects: | linux-lts-raring (Ubuntu Utopic) |
Changed in linux-lts-wily (Ubuntu Precise): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-lts-wily (Ubuntu Wily): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-lts-wily (Ubuntu Vivid): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-raspi2 (Ubuntu Precise): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-raspi2 (Ubuntu Wily): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-raspi2 (Ubuntu Vivid): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-lts-xenial (Ubuntu Precise): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-lts-xenial (Ubuntu Wily): | |
status: | New → Invalid |
importance: | Undecided → Medium |
To post a comment you must log in.
CVE-2014-4014