7.2

CVE-2014-5206

The do_remount function in fs/namespace.c in the Linux kernel through 3.16.1 does not maintain the MNT_LOCK_READONLY bit across a remount of a bind mount, which allows local users to bypass an intended read-only restriction and defeat certain sandbox protection mechanisms via a "mount -o remount" command within a user namespace.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 3.8 < 3.10.55
LinuxLinux Kernel Version >= 3.11 < 3.12.27
LinuxLinux Kernel Version >= 3.13 < 3.14.19
LinuxLinux Kernel Version >= 3.15 < 3.16.3
CanonicalUbuntu Linux Version12.04 SwEditionesm
CanonicalUbuntu Linux Version14.04 SwEditionesm
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.37% 0.284
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.2 3.9 10
AV:L/AC:L/Au:N/C:C/I:C/A:C
CWE-269 Improper Privilege Management

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=a6138db815df5ee542d848318e5dae681590fccd
http://www.openwall.com/lists/oss-security/2014/08/13/4
Third Party Advisory
Mailing List
http://www.securityfocus.com/bid/69214
Third Party Advisory
VDB Entry
http://www.ubuntu.com/usn/USN-2317-1
Third Party Advisory
http://www.ubuntu.com/usn/USN-2318-1
Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1129662
Patch
Third Party Advisory
Issue Tracking
https://github.com/torvalds/linux/commit/a6138db815df5ee542d848318e5dae681590fccd
Patch
Third Party Advisory