7.8

CVE-2016-1576

Exploit
The overlayfs implementation in the Linux kernel through 4.5.2 does not properly restrict the mount namespace, which allows local users to gain privileges by mounting an overlayfs filesystem on top of a FUSE filesystem, and then executing a crafted setuid program.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
CanonicalUbuntu Core Version15.04
CanonicalUbuntu Linux Version12.04 SwEditionlts
CanonicalUbuntu Linux Version14.04 SwEditionlts
CanonicalUbuntu Linux Version15.10
CanonicalUbuntu Linux Version16.04 SwEditionlts
CanonicalUbuntu Linux Version16.10
CanonicalUbuntu Touch Version15.04
LinuxLinux Kernel Version <= 4.5.2
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.06% 0.602
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov 7.2 3.9 10
AV:L/AC:L/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=e9f57ebcba563e0cd532926cab83c92bb4d79360
Patch
Vendor Advisory
Mailing List
http://www.openwall.com/lists/oss-security/2021/10/18/1
Third Party Advisory
Mailing List
http://people.canonical.com/~ubuntu-security/cve/2016/CVE-2016-1576.html
Third Party Advisory
http://www.halfdog.net/Security/2016/OverlayfsOverFusePrivilegeEscalation/
Third Party Advisory
Exploit
http://www.openwall.com/lists/oss-security/2016/02/24/8
Third Party Advisory
Mailing List
https://bugs.launchpad.net/bugs/1535150
Third Party Advisory
https://launchpadlibrarian.net/235300093/0005-overlayfs-Be-more-careful-about-copying-up-sxid-file.patch
Patch
Third Party Advisory
Mailing List
https://launchpadlibrarian.net/235300225/0006-overlayfs-Propogate-nosuid-from-lower-and-upper-moun.patch
Patch
Third Party Advisory
Mailing List