CVE-2015-1350
Bug #1415636 reported by
John Johansen
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
linux (Ubuntu) |
New
|
Medium
|
Unassigned | ||
Precise |
Won't Fix
|
Medium
|
Unassigned | ||
Trusty |
New
|
Medium
|
Unassigned | ||
Vivid |
Won't Fix
|
Medium
|
Unassigned | ||
Wily |
New
|
Medium
|
Unassigned | ||
Xenial |
New
|
Medium
|
Unassigned | ||
Yakkety |
Won't Fix
|
Medium
|
Unassigned | ||
linux-armadaxp (Ubuntu) |
Invalid
|
Medium
|
Unassigned | ||
Precise |
Won't Fix
|
Medium
|
Unassigned | ||
Trusty |
Invalid
|
Medium
|
Unassigned | ||
Vivid |
Invalid
|
Medium
|
Unassigned | ||
Wily |
Invalid
|
Medium
|
Unassigned | ||
Xenial |
Invalid
|
Medium
|
Unassigned | ||
Yakkety |
Invalid
|
Medium
|
Unassigned | ||
linux-ec2 (Ubuntu) |
Invalid
|
Medium
|
Unassigned | ||
Precise |
Invalid
|
Medium
|
Unassigned | ||
Trusty |
Invalid
|
Medium
|
Unassigned | ||
Vivid |
Invalid
|
Medium
|
Unassigned | ||
Wily |
Invalid
|
Medium
|
Unassigned | ||
Xenial |
Invalid
|
Medium
|
Unassigned | ||
Yakkety |
Invalid
|
Medium
|
Unassigned | ||
linux-flo (Ubuntu) |
New
|
Medium
|
Unassigned | ||
Precise |
Invalid
|
Medium
|
Unassigned | ||
Trusty |
Invalid
|
Medium
|
Unassigned | ||
Vivid |
Won't Fix
|
Medium
|
Unassigned | ||
Wily |
New
|
Medium
|
Unassigned | ||
Xenial |
New
|
Medium
|
Unassigned | ||
Yakkety |
New
|
Medium
|
Unassigned | ||
linux-fsl-imx51 (Ubuntu) |
Invalid
|
Medium
|
Unassigned | ||
Precise |
Invalid
|
Medium
|
Unassigned | ||
Trusty |
Invalid
|
Medium
|
Unassigned | ||
Vivid |
Invalid
|
Medium
|
Unassigned | ||
Wily |
Invalid
|
Medium
|
Unassigned | ||
Xenial |
Invalid
|
Medium
|
Unassigned | ||
Yakkety |
Invalid
|
Medium
|
Unassigned | ||
linux-goldfish (Ubuntu) |
New
|
Medium
|
Unassigned | ||
Precise |
Invalid
|
Medium
|
Unassigned | ||
Trusty |
Invalid
|
Medium
|
Unassigned | ||
Vivid |
New
|
Medium
|
Unassigned | ||
Wily |
New
|
Medium
|
Unassigned | ||
Xenial |
New
|
Medium
|
Unassigned | ||
Yakkety |
New
|
Medium
|
Unassigned | ||
linux-lts-backport-maverick (Ubuntu) |
New
|
Undecided
|
Unassigned | ||
Lucid |
Won't Fix
|
Undecided
|
Unassigned | ||
Precise |
Won't Fix
|
Undecided
|
Unassigned | ||
Trusty |
New
|
Undecided
|
Unassigned | ||
Utopic |
Won't Fix
|
Undecided
|
Unassigned | ||
Vivid |
New
|
Undecided
|
Unassigned | ||
Wily |
New
|
Undecided
|
Unassigned | ||
Xenial |
New
|
Undecided
|
Unassigned | ||
Yakkety |
New
|
Undecided
|
Unassigned | ||
linux-lts-backport-natty (Ubuntu) |
New
|
Undecided
|
Unassigned | ||
Lucid |
Won't Fix
|
Undecided
|
Unassigned | ||
Precise |
Won't Fix
|
Undecided
|
Unassigned | ||
Trusty |
New
|
Undecided
|
Unassigned | ||
Utopic |
Won't Fix
|
Undecided
|
Unassigned | ||
Vivid |
New
|
Undecided
|
Unassigned | ||
Wily |
New
|
Undecided
|
Unassigned | ||
Xenial |
New
|
Undecided
|
Unassigned | ||
Yakkety |
New
|
Undecided
|
Unassigned | ||
linux-lts-quantal (Ubuntu) |
Invalid
|
Medium
|
Unassigned | ||
Precise |
Won't Fix
|
Medium
|
Unassigned | ||
Trusty |
Invalid
|
Medium
|
Unassigned | ||
Vivid |
Invalid
|
Medium
|
Unassigned | ||
Wily |
Invalid
|
Medium
|
Unassigned | ||
Xenial |
Invalid
|
Medium
|
Unassigned | ||
Yakkety |
Invalid
|
Medium
|
Unassigned | ||
linux-lts-raring (Ubuntu) |
Invalid
|
Medium
|
Unassigned | ||
Precise |
Invalid
|
Medium
|
Unassigned | ||
Trusty |
Invalid
|
Medium
|
Unassigned | ||
Vivid |
Invalid
|
Medium
|
Unassigned | ||
Wily |
Invalid
|
Medium
|
Unassigned | ||
Xenial |
Invalid
|
Medium
|
Unassigned | ||
Yakkety |
Invalid
|
Medium
|
Unassigned | ||
linux-lts-saucy (Ubuntu) |
Invalid
|
Medium
|
Unassigned | ||
Precise |
Won't Fix
|
Medium
|
Unassigned | ||
Trusty |
Invalid
|
Medium
|
Unassigned | ||
Vivid |
Invalid
|
Medium
|
Unassigned | ||
Wily |
Invalid
|
Medium
|
Unassigned | ||
Xenial |
Invalid
|
Medium
|
Unassigned | ||
Yakkety |
Invalid
|
Medium
|
Unassigned | ||
linux-lts-trusty (Ubuntu) |
Invalid
|
Medium
|
Unassigned | ||
Precise |
Won't Fix
|
Medium
|
Unassigned | ||
Trusty |
Invalid
|
Medium
|
Unassigned | ||
Vivid |
Invalid
|
Medium
|
Unassigned | ||
Wily |
Invalid
|
Medium
|
Unassigned | ||
Xenial |
Invalid
|
Medium
|
Unassigned | ||
Yakkety |
Invalid
|
Medium
|
Unassigned | ||
linux-lts-utopic (Ubuntu) |
Invalid
|
Medium
|
Unassigned | ||
Precise |
Invalid
|
Medium
|
Unassigned | ||
Trusty |
New
|
Medium
|
Unassigned | ||
Vivid |
Invalid
|
Medium
|
Unassigned | ||
Wily |
Invalid
|
Medium
|
Unassigned | ||
Xenial |
Invalid
|
Medium
|
Unassigned | ||
Yakkety |
Invalid
|
Medium
|
Unassigned | ||
linux-lts-vivid (Ubuntu) |
Invalid
|
Medium
|
Unassigned | ||
Precise |
Invalid
|
Medium
|
Unassigned | ||
Trusty |
New
|
Medium
|
Unassigned | ||
Vivid |
Invalid
|
Medium
|
Unassigned | ||
Wily |
Invalid
|
Medium
|
Unassigned | ||
Xenial |
Invalid
|
Medium
|
Unassigned | ||
Yakkety |
Invalid
|
Medium
|
Unassigned | ||
linux-lts-wily (Ubuntu) |
Invalid
|
Medium
|
Unassigned | ||
Precise |
Invalid
|
Medium
|
Unassigned | ||
Trusty |
New
|
Medium
|
Unassigned | ||
Vivid |
Invalid
|
Medium
|
Unassigned | ||
Wily |
Invalid
|
Medium
|
Unassigned | ||
Xenial |
Invalid
|
Medium
|
Unassigned | ||
Yakkety |
Invalid
|
Medium
|
Unassigned | ||
linux-lts-xenial (Ubuntu) |
Invalid
|
Medium
|
Unassigned | ||
Precise |
Invalid
|
Medium
|
Unassigned | ||
Trusty |
New
|
Medium
|
Unassigned | ||
Vivid |
New
|
Undecided
|
Unassigned | ||
Wily |
Invalid
|
Medium
|
Unassigned | ||
Xenial |
Invalid
|
Medium
|
Unassigned | ||
Yakkety |
Invalid
|
Medium
|
Unassigned | ||
linux-mako (Ubuntu) |
New
|
Medium
|
Unassigned | ||
Precise |
Invalid
|
Medium
|
Unassigned | ||
Trusty |
Invalid
|
Medium
|
Unassigned | ||
Vivid |
New
|
Medium
|
Unassigned | ||
Wily |
New
|
Medium
|
Unassigned | ||
Xenial |
New
|
Medium
|
Unassigned | ||
Yakkety |
New
|
Medium
|
Unassigned | ||
linux-manta (Ubuntu) |
Invalid
|
Medium
|
Unassigned | ||
Precise |
Invalid
|
Medium
|
Unassigned | ||
Trusty |
Invalid
|
Medium
|
Unassigned | ||
Vivid |
New
|
Medium
|
Unassigned | ||
Wily |
New
|
Medium
|
Unassigned | ||
Xenial |
Invalid
|
Medium
|
Unassigned | ||
Yakkety |
Invalid
|
Medium
|
Unassigned | ||
linux-mvl-dove (Ubuntu) |
Invalid
|
Medium
|
Unassigned | ||
Precise |
Invalid
|
Medium
|
Unassigned | ||
Trusty |
Invalid
|
Medium
|
Unassigned | ||
Vivid |
Invalid
|
Medium
|
Unassigned | ||
Wily |
Invalid
|
Medium
|
Unassigned | ||
Xenial |
Invalid
|
Medium
|
Unassigned | ||
Yakkety |
Invalid
|
Medium
|
Unassigned | ||
linux-raspi2 (Ubuntu) |
New
|
Medium
|
Unassigned | ||
Precise |
Invalid
|
Medium
|
Unassigned | ||
Trusty |
Invalid
|
Medium
|
Unassigned | ||
Vivid |
Invalid
|
Medium
|
Unassigned | ||
Wily |
New
|
Medium
|
Unassigned | ||
Xenial |
New
|
Medium
|
Unassigned | ||
Yakkety |
New
|
Medium
|
Unassigned | ||
linux-snapdragon (Ubuntu) |
New
|
Medium
|
Unassigned | ||
Precise |
Invalid
|
Medium
|
Unassigned | ||
Trusty |
Invalid
|
Medium
|
Unassigned | ||
Vivid |
New
|
Undecided
|
Unassigned | ||
Wily |
Invalid
|
Medium
|
Unassigned | ||
Xenial |
New
|
Medium
|
Unassigned | ||
Yakkety |
New
|
Medium
|
Unassigned | ||
linux-ti-omap4 (Ubuntu) |
Invalid
|
Medium
|
Unassigned | ||
Precise |
Won't Fix
|
Medium
|
Unassigned | ||
Trusty |
Invalid
|
Medium
|
Unassigned | ||
Vivid |
Invalid
|
Medium
|
Unassigned | ||
Wily |
Invalid
|
Medium
|
Unassigned | ||
Xenial |
Invalid
|
Medium
|
Unassigned | ||
Yakkety |
Invalid
|
Medium
|
Unassigned |
Bug Description
The VFS subsystem in the Linux kernel 3.x provides an incomplete set of requirements for setattr operations that underspecifies removing extended privilege attributes, which allows local users to cause a denial of service (capability stripping) via a failed invocation of a system call, as demonstrated by using chown to remove a capability from the ping or Wireshark dumpcap program.
CVE References
Changed in linux (Ubuntu Lucid): | |
importance: | Undecided → Medium |
Changed in linux (Ubuntu Vivid): | |
importance: | Undecided → Medium |
Changed in linux (Ubuntu Utopic): | |
importance: | Undecided → Medium |
Changed in linux-ti-omap4 (Ubuntu Precise): | |
importance: | Undecided → Medium |
Changed in linux-ti-omap4 (Ubuntu Trusty): | |
importance: | Undecided → Medium |
Changed in linux-ti-omap4 (Ubuntu Lucid): | |
importance: | Undecided → Medium |
Changed in linux-ti-omap4 (Ubuntu Vivid): | |
importance: | Undecided → Medium |
Changed in linux-ti-omap4 (Ubuntu Utopic): | |
importance: | Undecided → Medium |
Changed in linux-lts-raring (Ubuntu Precise): | |
importance: | Undecided → Medium |
Changed in linux-lts-raring (Ubuntu Trusty): | |
importance: | Undecided → Medium |
Changed in linux-lts-raring (Ubuntu Lucid): | |
importance: | Undecided → Medium |
Changed in linux-lts-raring (Ubuntu Vivid): | |
importance: | Undecided → Medium |
Changed in linux-lts-raring (Ubuntu Utopic): | |
importance: | Undecided → Medium |
Changed in linux-armadaxp (Ubuntu Precise): | |
importance: | Undecided → Medium |
Changed in linux-armadaxp (Ubuntu Trusty): | |
importance: | Undecided → Medium |
Changed in linux-armadaxp (Ubuntu Lucid): | |
importance: | Undecided → Medium |
Changed in linux-armadaxp (Ubuntu Vivid): | |
importance: | Undecided → Medium |
Changed in linux-armadaxp (Ubuntu Utopic): | |
importance: | Undecided → Medium |
Changed in linux-mvl-dove (Ubuntu Precise): | |
importance: | Undecided → Medium |
Changed in linux-mvl-dove (Ubuntu Trusty): | |
importance: | Undecided → Medium |
Changed in linux-mvl-dove (Ubuntu Lucid): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-mvl-dove (Ubuntu Vivid): | |
importance: | Undecided → Medium |
Changed in linux-mvl-dove (Ubuntu Utopic): | |
importance: | Undecided → Medium |
Changed in linux-lts-saucy (Ubuntu Precise): | |
importance: | Undecided → Medium |
Changed in linux-lts-saucy (Ubuntu Trusty): | |
importance: | Undecided → Medium |
Changed in linux-lts-saucy (Ubuntu Lucid): | |
importance: | Undecided → Medium |
Changed in linux-lts-saucy (Ubuntu Vivid): | |
importance: | Undecided → Medium |
Changed in linux-lts-saucy (Ubuntu Utopic): | |
importance: | Undecided → Medium |
Changed in linux-manta (Ubuntu Precise): | |
importance: | Undecided → Medium |
Changed in linux-manta (Ubuntu Trusty): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-manta (Ubuntu Lucid): | |
importance: | Undecided → Medium |
Changed in linux-manta (Ubuntu Vivid): | |
importance: | Undecided → Medium |
Changed in linux-manta (Ubuntu Utopic): | |
importance: | Undecided → Medium |
Changed in linux-ec2 (Ubuntu Precise): | |
importance: | Undecided → Medium |
Changed in linux-ec2 (Ubuntu Trusty): | |
importance: | Undecided → Medium |
Changed in linux-ec2 (Ubuntu Lucid): | |
importance: | Undecided → Medium |
Changed in linux-ec2 (Ubuntu Vivid): | |
importance: | Undecided → Medium |
Changed in linux-ec2 (Ubuntu Utopic): | |
importance: | Undecided → Medium |
Changed in linux-mako (Ubuntu Precise): | |
importance: | Undecided → Medium |
Changed in linux-mako (Ubuntu Trusty): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-mako (Ubuntu Lucid): | |
importance: | Undecided → Medium |
Changed in linux-mako (Ubuntu Vivid): | |
importance: | Undecided → Medium |
Changed in linux-mako (Ubuntu Utopic): | |
importance: | Undecided → Medium |
Changed in linux-fsl-imx51 (Ubuntu Precise): | |
importance: | Undecided → Medium |
Changed in linux-fsl-imx51 (Ubuntu Trusty): | |
importance: | Undecided → Medium |
Changed in linux-fsl-imx51 (Ubuntu Lucid): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-fsl-imx51 (Ubuntu Vivid): | |
importance: | Undecided → Medium |
Changed in linux-fsl-imx51 (Ubuntu Utopic): | |
importance: | Undecided → Medium |
Changed in linux-lts-utopic (Ubuntu Precise): | |
importance: | Undecided → Medium |
Changed in linux-lts-utopic (Ubuntu Trusty): | |
importance: | Undecided → Medium |
Changed in linux-lts-utopic (Ubuntu Lucid): | |
importance: | Undecided → Medium |
Changed in linux-lts-utopic (Ubuntu Vivid): | |
importance: | Undecided → Medium |
Changed in linux-lts-utopic (Ubuntu Utopic): | |
importance: | Undecided → Medium |
Changed in linux-goldfish (Ubuntu Precise): | |
importance: | Undecided → Medium |
Changed in linux-goldfish (Ubuntu Trusty): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-goldfish (Ubuntu Lucid): | |
importance: | Undecided → Medium |
Changed in linux-goldfish (Ubuntu Vivid): | |
importance: | Undecided → Medium |
Changed in linux-goldfish (Ubuntu Utopic): | |
importance: | Undecided → Medium |
Changed in linux-flo (Ubuntu Precise): | |
importance: | Undecided → Medium |
Changed in linux-flo (Ubuntu Trusty): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-flo (Ubuntu Lucid): | |
importance: | Undecided → Medium |
Changed in linux-flo (Ubuntu Vivid): | |
importance: | Undecided → Medium |
Changed in linux-flo (Ubuntu Utopic): | |
importance: | Undecided → Medium |
no longer affects: | linux-lts-trusty (Ubuntu Lucid) |
no longer affects: | linux-armadaxp (Ubuntu Lucid) |
no longer affects: | linux-ec2 (Ubuntu Lucid) |
no longer affects: | linux-goldfish (Ubuntu Lucid) |
no longer affects: | linux-lts-saucy (Ubuntu Lucid) |
no longer affects: | linux-lts-quantal (Ubuntu Lucid) |
no longer affects: | linux-mvl-dove (Ubuntu Lucid) |
no longer affects: | linux-ti-omap4 (Ubuntu Lucid) |
no longer affects: | linux (Ubuntu Lucid) |
no longer affects: | linux-mako (Ubuntu Lucid) |
no longer affects: | linux-fsl-imx51 (Ubuntu Lucid) |
no longer affects: | linux-lts-utopic (Ubuntu Lucid) |
no longer affects: | linux-flo (Ubuntu Lucid) |
no longer affects: | linux-lts-raring (Ubuntu Lucid) |
no longer affects: | linux-manta (Ubuntu Lucid) |
Changed in linux-lts-vivid (Ubuntu Precise): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-lts-vivid (Ubuntu Vivid): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-lts-vivid (Ubuntu Wily): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-lts-vivid (Ubuntu Utopic): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-lts-vivid (Ubuntu Trusty): | |
importance: | Undecided → Medium |
no longer affects: | linux-lts-trusty (Ubuntu Utopic) |
no longer affects: | linux-armadaxp (Ubuntu Utopic) |
no longer affects: | linux-ec2 (Ubuntu Utopic) |
no longer affects: | linux-goldfish (Ubuntu Utopic) |
no longer affects: | linux-lts-saucy (Ubuntu Utopic) |
no longer affects: | linux-lts-quantal (Ubuntu Utopic) |
no longer affects: | linux-mvl-dove (Ubuntu Utopic) |
no longer affects: | linux-ti-omap4 (Ubuntu Utopic) |
no longer affects: | linux-lts-vivid (Ubuntu Utopic) |
no longer affects: | linux (Ubuntu Utopic) |
no longer affects: | linux-mako (Ubuntu Utopic) |
no longer affects: | linux-fsl-imx51 (Ubuntu Utopic) |
no longer affects: | linux-lts-utopic (Ubuntu Utopic) |
no longer affects: | linux-flo (Ubuntu Utopic) |
no longer affects: | linux-lts-raring (Ubuntu Utopic) |
no longer affects: | linux-manta (Ubuntu Utopic) |
Changed in linux-lts-raring (Ubuntu Precise): | |
status: | New → Invalid |
Changed in linux-lts-wily (Ubuntu Precise): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-lts-wily (Ubuntu Wily): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-lts-wily (Ubuntu Xenial): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-lts-wily (Ubuntu Trusty): | |
importance: | Undecided → Medium |
Changed in linux-lts-wily (Ubuntu Vivid): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-raspi2 (Ubuntu Precise): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-raspi2 (Ubuntu Wily): | |
importance: | Undecided → Medium |
Changed in linux-raspi2 (Ubuntu Xenial): | |
importance: | Undecided → Medium |
Changed in linux-raspi2 (Ubuntu Trusty): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-raspi2 (Ubuntu Vivid): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-lts-xenial (Ubuntu Precise): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-lts-xenial (Ubuntu Wily): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-lts-xenial (Ubuntu Xenial): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-lts-xenial (Ubuntu Trusty): | |
importance: | Undecided → Medium |
Changed in linux-manta (Ubuntu Xenial): | |
status: | New → Invalid |
Changed in linux-lts-backport-maverick (Ubuntu Utopic): | |
status: | New → Won't Fix |
Changed in linux-lts-backport-natty (Ubuntu Utopic): | |
status: | New → Won't Fix |
Changed in linux-snapdragon (Ubuntu Precise): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-snapdragon (Ubuntu Wily): | |
status: | New → Invalid |
importance: | Undecided → Medium |
Changed in linux-snapdragon (Ubuntu Xenial): | |
importance: | Undecided → Medium |
Changed in linux-snapdragon (Ubuntu Yakkety): | |
importance: | Undecided → Medium |
Changed in linux-snapdragon (Ubuntu Trusty): | |
status: | New → Invalid |
importance: | Undecided → Medium |
description: | updated |
Changed in linux-flo (Ubuntu Vivid): | |
status: | New → Won't Fix |
Changed in linux-lts-backport-maverick (Ubuntu Precise): | |
status: | New → Won't Fix |
Changed in linux-lts-backport-natty (Ubuntu Precise): | |
status: | New → Won't Fix |
To post a comment you must log in.
CVE-2015-1350