cnvd - cnvd-2016-04977

cnvd-2016-04977

Vulnerability from cnvd

Title

Linux util-linux本地权限提升漏洞

Description

util-linux是一套用在Linux系统中并包含了多种系统管理工具的软件包，它提供加载、卸载、格式化、分区和管理硬盘驱动器，打开tty端口并得到内核消息等工具。 util-linux 2.24.2版本中存在本地提权漏洞。本地攻击者可利用该漏洞获取提升的权限。

Severity

中

Formal description

目前厂商暂未发布修复措施解决此安全问题，建议使用此软件的用户随时关注厂商主页或参考网址以获取解决办法： http://www.kernel.org/pub/linux/utils/util-linux/

Reference

http://www.securityfocus.com/bid/83612

Impacted products

Name
Linux util-linux 2.24.2

Show details on source website

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "83612"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2016-2779"
    }
  },
  "description": "util-linux\u662f\u4e00\u5957\u7528\u5728Linux\u7cfb\u7edf\u4e2d\u5e76\u5305\u542b\u4e86\u591a\u79cd\u7cfb\u7edf\u7ba1\u7406\u5de5\u5177\u7684\u8f6f\u4ef6\u5305\uff0c\u5b83\u63d0\u4f9b\u52a0\u8f7d\u3001\u5378\u8f7d\u3001\u683c\u5f0f\u5316\u3001\u5206\u533a\u548c\u7ba1\u7406\u786c\u76d8\u9a71\u52a8\u5668\uff0c\u6253\u5f00tty\u7aef\u53e3\u5e76\u5f97\u5230\u5185\u6838\u6d88\u606f\u7b49\u5de5\u5177\u3002\r\n\r\nutil-linux 2.24.2\u7248\u672c\u4e2d\u5b58\u5728\u672c\u5730\u63d0\u6743\u6f0f\u6d1e\u3002\u672c\u5730\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6\u63d0\u5347\u7684\u6743\u9650\u3002",
  "discovererName": "Linux",
  "formalWay": "\u76ee\u524d\u5382\u5546\u6682\u672a\u53d1\u5e03\u4fee\u590d\u63aa\u65bd\u89e3\u51b3\u6b64\u5b89\u5168\u95ee\u9898\uff0c\u5efa\u8bae\u4f7f\u7528\u6b64\u8f6f\u4ef6\u7684\u7528\u6237\u968f\u65f6\u5173\u6ce8\u5382\u5546\u4e3b\u9875\u6216\u53c2\u8003\u7f51\u5740\u4ee5\u83b7\u53d6\u89e3\u51b3\u529e\u6cd5\uff1a \r\nhttp://www.kernel.org/pub/linux/utils/util-linux/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2016-04977",
  "openTime": "2016-07-20",
  "products": {
    "product": "Linux util-linux 2.24.2"
  },
  "referenceLink": "http://www.securityfocus.com/bid/83612",
  "serverity": "\u4e2d",
  "submitTime": "2016-07-17",
  "title": "Linux util-linux\u672c\u5730\u6743\u9650\u63d0\u5347\u6f0f\u6d1e"
}

CVE-2016-2779 (GCVE-0-2016-2779)

Vulnerability from cvelistv5

Published

2017-02-07 15:00

Modified

2024-08-05 23:32

Severity ?

CWE

n/a

Summary

runuser in util-linux allows local users to escape to the parent session via a crafted TIOCSTI ioctl call, which pushes characters to the terminal's input buffer.

References

URL

Tags

	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=815922	x_refsource_MISC
	http://www.openwall.com/lists/oss-security/2016/02/27/1	mailing-list, x_refsource_MLIST
	http://www.openwall.com/lists/oss-security/2016/02/27/2	mailing-list, x_refsource_MLIST

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T23:32:21.161Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=815922"
          },
          {
            "name": "[oss-security] 20160226 CVE Request: util-linux runuser tty hijacking via TIOCSTI ioctl",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2016/02/27/1"
          },
          {
            "name": "[oss-security] 20160227 Re: CVE Request: util-linux runuser tty hijacking via TIOCSTI ioctl",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2016/02/27/2"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2016-02-25T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "runuser in util-linux allows local users to escape to the parent session via a crafted TIOCSTI ioctl call, which pushes characters to the terminal\u0027s input buffer."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-02-07T13:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=815922"
        },
        {
          "name": "[oss-security] 20160226 CVE Request: util-linux runuser tty hijacking via TIOCSTI ioctl",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2016/02/27/1"
        },
        {
          "name": "[oss-security] 20160227 Re: CVE Request: util-linux runuser tty hijacking via TIOCSTI ioctl",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2016/02/27/2"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2016-2779",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "runuser in util-linux allows local users to escape to the parent session via a crafted TIOCSTI ioctl call, which pushes characters to the terminal\u0027s input buffer."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=815922",
              "refsource": "MISC",
              "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=815922"
            },
            {
              "name": "[oss-security] 20160226 CVE Request: util-linux runuser tty hijacking via TIOCSTI ioctl",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2016/02/27/1"
            },
            {
              "name": "[oss-security] 20160227 Re: CVE Request: util-linux runuser tty hijacking via TIOCSTI ioctl",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2016/02/27/2"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2016-2779",
    "datePublished": "2017-02-07T15:00:00",
    "dateReserved": "2016-02-27T00:00:00",
    "dateUpdated": "2024-08-05T23:32:21.161Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Log in or create an account to share your comment.

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.