cnvd-2015-08500
Vulnerability from cnvd
Title: Linux kernel ‘fs/overlayfs/inode.c’本地提权漏洞
Description:
Linux kernel是一款开源的操作系统。
Linux kernel ‘fs/overlayfs/inode.c’存在安全漏洞,允许本地攻击者利用该漏洞获取root权限。
Severity: 中
Patch Name: Linux kernel ‘fs/overlayfs/inode.c’本地提权漏洞的补丁
Patch Description:
Linux kernel是一款开源的操作系统。
Linux kernel ‘fs/overlayfs/inode.c’存在安全漏洞,允许本地攻击者利用该漏洞获取root权限。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description:
用户可参考如下厂商提供的安全补丁以修复该漏洞: https://www.kernel.org/
Reference: http://www.securityfocus.com/bid/79671
Impacted products
| Name | ['Debian Linux 6.0 sparc', 'Debian Linux 6.0 amd64', 'Debian Linux 6.0 arm', 'Debian Linux 6.0 ia-32', 'Debian Linux 6.0 ia-64', 'Debian Linux 6.0 mips', 'Debian Linux 6.0 powerpc', 'Debian Linux 6.0 s/390', 'Linux Linux Kernel 3.0.1', 'Linux Linux Kernel 3.0.2', 'Linux Linux Kernel 3.0.4', 'Linux Linux Kernel 3.0.5', 'Linux Linux Kernel 3.1.8', 'Linux Linux Kernel 3.2.1', 'Linux Linux Kernel 3.2.9', 'Linux Linux Kernel 3.2.13', 'Linux Linux Kernel 3.3.2', 'Linux Linux Kernel 3.3.4', 'Linux Linux Kernel 3.3.5'] |
|---|
{
"cves": {
"cve": {
"cveNumber": "CVE-2015-8660"
}
},
"description": "Linux kernel\u662f\u4e00\u6b3e\u5f00\u6e90\u7684\u64cd\u4f5c\u7cfb\u7edf\u3002\r\n\r\nLinux kernel \u2018fs/overlayfs/inode.c\u2019\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u5141\u8bb8\u672c\u5730\u653b\u51fb\u8005\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6root\u6743\u9650\u3002",
"discovererName": "Nathan Williams",
"formalWay": "\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u5382\u5546\u63d0\u4f9b\u7684\u5b89\u5168\u8865\u4e01\u4ee5\u4fee\u590d\u8be5\u6f0f\u6d1e\uff1a\r\nhttps://www.kernel.org/",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2015-08500",
"openTime": "2015-12-29",
"patchDescription": "Linux kernel\u662f\u4e00\u6b3e\u5f00\u6e90\u7684\u64cd\u4f5c\u7cfb\u7edf\u3002\r\n\r\nLinux kernel \u2018fs/overlayfs/inode.c\u2019\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u5141\u8bb8\u672c\u5730\u653b\u51fb\u8005\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6root\u6743\u9650\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "Linux kernel \u2018fs/overlayfs/inode.c\u2019\u672c\u5730\u63d0\u6743\u6f0f\u6d1e\u7684\u8865\u4e01",
"products": {
"product": [
"Debian Linux 6.0 sparc",
"Debian Linux 6.0 amd64",
"Debian Linux 6.0 arm",
"Debian Linux 6.0 ia-32",
"Debian Linux 6.0 ia-64",
"Debian Linux 6.0 mips",
"Debian Linux 6.0 powerpc",
"Debian Linux 6.0 s/390",
"Linux Linux Kernel 3.0.1",
"Linux Linux Kernel 3.0.2",
"Linux Linux Kernel 3.0.4",
"Linux Linux Kernel 3.0.5",
"Linux Linux Kernel 3.1.8",
"Linux Linux Kernel 3.2.1",
"Linux Linux Kernel 3.2.9",
"Linux Linux Kernel 3.2.13",
"Linux Linux Kernel 3.3.2",
"Linux Linux Kernel 3.3.4",
"Linux Linux Kernel 3.3.5"
]
},
"referenceLink": "http://www.securityfocus.com/bid/79671",
"serverity": "\u4e2d",
"submitTime": "2015-12-27",
"title": "Linux kernel \u2018fs/overlayfs/inode.c\u2019\u672c\u5730\u63d0\u6743\u6f0f\u6d1e"
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…