5.5

CVE-2023-52880

tty: n_gsm: require CAP_NET_ADMIN to attach N_GSM0710 ldisc

In the Linux kernel, the following vulnerability has been resolved:

tty: n_gsm: require CAP_NET_ADMIN to attach N_GSM0710 ldisc

Any unprivileged user can attach N_GSM0710 ldisc, but it requires
CAP_NET_ADMIN to create a GSM network anyway.

Require initial namespace CAP_NET_ADMIN to do that.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version < 4.19.312
LinuxLinux Kernel Version >= 4.20 < 5.4.274
LinuxLinux Kernel Version >= 5.5 < 5.10.215
LinuxLinux Kernel Version >= 5.11 < 5.15.155
LinuxLinux Kernel Version >= 5.16 < 6.1.86
LinuxLinux Kernel Version >= 6.2 < 6.6
DebianDebian Linux Version10.0
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.24% 0.145
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Es wurden noch keine Informationen zu CWE veröffentlicht.
https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
Third Party Advisory
Mailing List
https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html
Third Party Advisory
Mailing List
https://git.kernel.org/stable/c/2b85977977cbd120591b23c2450e90a5806a7167
Patch
https://git.kernel.org/stable/c/2d154a54c58f9c8375bfbea9f7e51ba3bfb2e43a
Patch
https://git.kernel.org/stable/c/67c37756898a5a6b2941a13ae7260c89b54e0d88
Patch
https://git.kernel.org/stable/c/7a529c9023a197ab3bf09bb95df32a3813f7ba58
Patch
https://git.kernel.org/stable/c/7d303dee473ba3529d75b63491e9963342107bed
Patch
https://git.kernel.org/stable/c/ada28eb4b9561aab93942f3224a2e41d76fe57fa
Patch