var-201608-0158
Vulnerability from variot
The kernel in Android before 2016-08-05 on Nexus 7 (2013) devices allows attackers to gain privileges via a crafted application, aka internal bug 28522518. Nexus 7 (2013) Run on device Android Kernel contains a privileged vulnerability. Google Nexus is prone to a privilege-escalation vulnerability. Attackers can exploit these issues to execute arbitrary code with elevated privileges within the context of the kernel. Google Nexus versions Nexus 7 (2013) is vulnerable. This issue is being tracked by Android Bug ID A-28522518. ========================================================================== Ubuntu Security Notice USN-3082-2 September 19, 2016
linux-ti-omap4 vulnerability
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 12.04 LTS
Summary:
The system could be made to run programs as an administrator.
Software Description: - linux-ti-omap4: Linux kernel for OMAP4
Details:
Chiachih Wu, Yuan-Tsung Lo, and Xuxian Jiang discovered that the legacy ABI for ARM (OABI) had incomplete access checks for epoll_wait(2) and semtimedop(2).
Update instructions:
The problem can be corrected by updating your system to the following package versions:
Ubuntu 12.04 LTS: linux-image-3.2.0-1488-omap4 3.2.0-1488.115
After a standard system update you need to reboot your computer to make all the necessary changes.
ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well.
References: http://www.ubuntu.com/usn/usn-3082-2 http://www.ubuntu.com/usn/usn-3082-1 CVE-2016-3857
Package Information: https://launchpad.net/ubuntu/+source/linux-ti-omap4/3.2.0-1488.115
Show details on source website{
"affected_products": {
"_id": null,
"data": [
{
"_id": null,
"model": "android",
"scope": "lte",
"trust": 1.0,
"vendor": "google",
"version": "6.0.1"
},
{
"_id": null,
"model": "android",
"scope": "eq",
"trust": 0.8,
"vendor": "google",
"version": "2016-08-05"
},
{
"_id": null,
"model": "android",
"scope": "eq",
"trust": 0.6,
"vendor": "google",
"version": "6.0.1"
},
{
"_id": null,
"model": "honor",
"scope": "eq",
"trust": 0.3,
"vendor": "huawei",
"version": "76.9"
},
{
"_id": null,
"model": "honor plus",
"scope": "eq",
"trust": 0.3,
"vendor": "huawei",
"version": "66.9"
},
{
"_id": null,
"model": "honor",
"scope": "eq",
"trust": 0.3,
"vendor": "huawei",
"version": "66.9"
},
{
"_id": null,
"model": "nexus",
"scope": "eq",
"trust": 0.3,
"vendor": "google",
"version": "7"
},
{
"_id": null,
"model": "honor",
"scope": "ne",
"trust": 0.3,
"vendor": "huawei",
"version": "76.9.16"
},
{
"_id": null,
"model": "honor plus",
"scope": "ne",
"trust": 0.3,
"vendor": "huawei",
"version": "66.9.16"
},
{
"_id": null,
"model": "honor",
"scope": "ne",
"trust": 0.3,
"vendor": "huawei",
"version": "66.9.16"
}
],
"sources": [
{
"db": "BID",
"id": "92234"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004257"
},
{
"db": "CNNVD",
"id": "CNNVD-201608-024"
},
{
"db": "NVD",
"id": "CVE-2016-3857"
}
]
},
"configurations": {
"_id": null,
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/o:google:android",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2016-004257"
}
]
},
"credits": {
"_id": null,
"data": "Chiachih Wu (@chiachih_wu), Yuan-Tsung Lo (computernik@gmail.com), and Xuxian Jiang of C0RE Team.",
"sources": [
{
"db": "BID",
"id": "92234"
}
],
"trust": 0.3
},
"cve": "CVE-2016-3857",
"cvss": {
"_id": null,
"data": [
{
"cvssV2": [
{
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "COMPLETE",
"baseScore": 9.3,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 8.6,
"id": "CVE-2016-3857",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 1.9,
"vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"author": "nvd@nist.gov",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 1.8,
"id": "CVE-2016-3857",
"impactScore": 5.9,
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.8,
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2016-3857",
"trust": 1.0,
"value": "HIGH"
},
{
"author": "NVD",
"id": "CVE-2016-3857",
"trust": 0.8,
"value": "High"
},
{
"author": "CNNVD",
"id": "CNNVD-201608-024",
"trust": 0.6,
"value": "CRITICAL"
},
{
"author": "VULMON",
"id": "CVE-2016-3857",
"trust": 0.1,
"value": "HIGH"
}
]
}
],
"sources": [
{
"db": "VULMON",
"id": "CVE-2016-3857"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004257"
},
{
"db": "CNNVD",
"id": "CNNVD-201608-024"
},
{
"db": "NVD",
"id": "CVE-2016-3857"
}
]
},
"description": {
"_id": null,
"data": "The kernel in Android before 2016-08-05 on Nexus 7 (2013) devices allows attackers to gain privileges via a crafted application, aka internal bug 28522518. Nexus 7 (2013) Run on device Android Kernel contains a privileged vulnerability. Google Nexus is prone to a privilege-escalation vulnerability. \nAttackers can exploit these issues to execute arbitrary code with elevated privileges within the context of the kernel. \nGoogle Nexus versions Nexus 7 (2013) is vulnerable. \nThis issue is being tracked by Android Bug ID A-28522518. \n==========================================================================\nUbuntu Security Notice USN-3082-2\nSeptember 19, 2016\n\nlinux-ti-omap4 vulnerability\n==========================================================================\n\nA security issue affects these releases of Ubuntu and its derivatives:\n\n- Ubuntu 12.04 LTS\n\nSummary:\n\nThe system could be made to run programs as an administrator. \n\nSoftware Description:\n- linux-ti-omap4: Linux kernel for OMAP4\n\nDetails:\n\nChiachih Wu, Yuan-Tsung Lo, and Xuxian Jiang discovered that the legacy ABI\nfor ARM (OABI) had incomplete access checks for epoll_wait(2) and\nsemtimedop(2). \n\nUpdate instructions:\n\nThe problem can be corrected by updating your system to the following\npackage versions:\n\nUbuntu 12.04 LTS:\n linux-image-3.2.0-1488-omap4 3.2.0-1488.115\n\nAfter a standard system update you need to reboot your computer to make\nall the necessary changes. \n\nATTENTION: Due to an unavoidable ABI change the kernel updates have\nbeen given a new version number, which requires you to recompile and\nreinstall all third party kernel modules you might have installed. \nUnless you manually uninstalled the standard kernel metapackages\n(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,\nlinux-powerpc), a standard system upgrade will automatically perform\nthis as well. \n\nReferences:\n http://www.ubuntu.com/usn/usn-3082-2\n http://www.ubuntu.com/usn/usn-3082-1\n CVE-2016-3857\n\nPackage Information:\n https://launchpad.net/ubuntu/+source/linux-ti-omap4/3.2.0-1488.115\n\n\n",
"sources": [
{
"db": "NVD",
"id": "CVE-2016-3857"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004257"
},
{
"db": "BID",
"id": "92234"
},
{
"db": "VULMON",
"id": "CVE-2016-3857"
},
{
"db": "PACKETSTORM",
"id": "138768"
},
{
"db": "PACKETSTORM",
"id": "138770"
}
],
"trust": 2.16
},
"external_ids": {
"_id": null,
"data": [
{
"db": "NVD",
"id": "CVE-2016-3857",
"trust": 3.0
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004257",
"trust": 0.8
},
{
"db": "AUSCERT",
"id": "ESB-2016.1866",
"trust": 0.6
},
{
"db": "CNNVD",
"id": "CNNVD-201608-024",
"trust": 0.6
},
{
"db": "BID",
"id": "92234",
"trust": 0.4
},
{
"db": "VULMON",
"id": "CVE-2016-3857",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "138768",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "138770",
"trust": 0.1
}
],
"sources": [
{
"db": "VULMON",
"id": "CVE-2016-3857"
},
{
"db": "BID",
"id": "92234"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004257"
},
{
"db": "PACKETSTORM",
"id": "138768"
},
{
"db": "PACKETSTORM",
"id": "138770"
},
{
"db": "CNNVD",
"id": "CNNVD-201608-024"
},
{
"db": "NVD",
"id": "CVE-2016-3857"
}
]
},
"id": "VAR-201608-0158",
"iot": {
"_id": null,
"data": true,
"sources": [
{
"db": "VARIoT devices database",
"id": null
}
],
"trust": 0.5890226
},
"last_update_date": "2024-11-23T19:29:14.874000Z",
"patch": {
"_id": null,
"data": [
{
"title": "Android Security Bulletin-August 2016",
"trust": 0.8,
"url": "http://source.android.com/security/bulletin/2016-08-01.html"
},
{
"title": "Android kernel Repair measures for privilege escalation",
"trust": 0.6,
"url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=63414"
},
{
"title": "Ubuntu Security Notice: linux-ti-omap4 vulnerability",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-3082-2"
},
{
"title": "Ubuntu Security Notice: linux vulnerability",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-3082-1"
},
{
"title": "Red Hat: CVE-2016-3857",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_cve_database\u0026qid=CVE-2016-3857"
},
{
"title": "Android Security Bulletins: Android Security Bulletin\u2014August 2016",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=android_security_bulletins\u0026qid=1c52474e34daae48915f8b4129072a86"
},
{
"title": "Linux-Kernel-exploit",
"trust": 0.1,
"url": "https://github.com/skbasava/Linux-Kernel-exploit "
},
{
"title": "linux-kernel-exploitation",
"trust": 0.1,
"url": "https://github.com/vahalen/linux-kernel-exploitation "
},
{
"title": "kernel-exploitation-linux",
"trust": 0.1,
"url": "https://github.com/Technoashofficial/kernel-exploitation-linux "
},
{
"title": "linux-kernel-exploitation",
"trust": 0.1,
"url": "https://github.com/s0wr0b1ndef/linux-kernel-exploitation "
},
{
"title": "linux-kernel-exploitation",
"trust": 0.1,
"url": "https://github.com/TamilHackz/linux-kernel-exploitation "
}
],
"sources": [
{
"db": "VULMON",
"id": "CVE-2016-3857"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004257"
},
{
"db": "CNNVD",
"id": "CNNVD-201608-024"
}
]
},
"problemtype_data": {
"_id": null,
"data": [
{
"problemtype": "CWE-264",
"trust": 1.8
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2016-004257"
},
{
"db": "NVD",
"id": "CVE-2016-3857"
}
]
},
"references": {
"_id": null,
"data": [
{
"trust": 2.0,
"url": "http://source.android.com/security/bulletin/2016-08-01.html"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2016-3857"
},
{
"trust": 0.8,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2016-3857"
},
{
"trust": 0.6,
"url": "http://www.auscert.org.au/./render.html?it=37318"
},
{
"trust": 0.3,
"url": "http://code.google.com/android/"
},
{
"trust": 0.3,
"url": "http://www.huawei.com/en/psirt/security-advisories/2016/huawei-sa-20160926-01-smartphone-en"
},
{
"trust": 0.2,
"url": "https://nvd.nist.gov/vuln/detail/cve-2016-3857"
},
{
"trust": 0.2,
"url": "http://www.ubuntu.com/usn/usn-3082-1"
},
{
"trust": 0.1,
"url": "https://cwe.mitre.org/data/definitions/264.html"
},
{
"trust": 0.1,
"url": "https://usn.ubuntu.com/3082-2/"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov"
},
{
"trust": 0.1,
"url": "https://www.securityfocus.com/bid/92234"
},
{
"trust": 0.1,
"url": "https://launchpad.net/ubuntu/+source/linux-ti-omap4/3.2.0-1488.115"
},
{
"trust": 0.1,
"url": "http://www.ubuntu.com/usn/usn-3082-2"
},
{
"trust": 0.1,
"url": "https://launchpad.net/ubuntu/+source/linux/3.2.0-110.151"
}
],
"sources": [
{
"db": "VULMON",
"id": "CVE-2016-3857"
},
{
"db": "BID",
"id": "92234"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004257"
},
{
"db": "PACKETSTORM",
"id": "138768"
},
{
"db": "PACKETSTORM",
"id": "138770"
},
{
"db": "CNNVD",
"id": "CNNVD-201608-024"
},
{
"db": "NVD",
"id": "CVE-2016-3857"
}
]
},
"sources": {
"_id": null,
"data": [
{
"db": "VULMON",
"id": "CVE-2016-3857",
"ident": null
},
{
"db": "BID",
"id": "92234",
"ident": null
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004257",
"ident": null
},
{
"db": "PACKETSTORM",
"id": "138768",
"ident": null
},
{
"db": "PACKETSTORM",
"id": "138770",
"ident": null
},
{
"db": "CNNVD",
"id": "CNNVD-201608-024",
"ident": null
},
{
"db": "NVD",
"id": "CVE-2016-3857",
"ident": null
}
]
},
"sources_release_date": {
"_id": null,
"data": [
{
"date": "2016-08-05T00:00:00",
"db": "VULMON",
"id": "CVE-2016-3857",
"ident": null
},
{
"date": "2016-08-01T00:00:00",
"db": "BID",
"id": "92234",
"ident": null
},
{
"date": "2016-08-12T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2016-004257",
"ident": null
},
{
"date": "2016-09-19T23:18:08",
"db": "PACKETSTORM",
"id": "138768",
"ident": null
},
{
"date": "2016-09-19T23:18:56",
"db": "PACKETSTORM",
"id": "138770",
"ident": null
},
{
"date": "2016-08-04T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201608-024",
"ident": null
},
{
"date": "2016-08-05T20:59:45.967000",
"db": "NVD",
"id": "CVE-2016-3857",
"ident": null
}
]
},
"sources_update_date": {
"_id": null,
"data": [
{
"date": "2016-08-10T00:00:00",
"db": "VULMON",
"id": "CVE-2016-3857",
"ident": null
},
{
"date": "2016-09-28T02:00:00",
"db": "BID",
"id": "92234",
"ident": null
},
{
"date": "2016-08-12T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2016-004257",
"ident": null
},
{
"date": "2016-08-10T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201608-024",
"ident": null
},
{
"date": "2024-11-21T02:50:48.357000",
"db": "NVD",
"id": "CVE-2016-3857",
"ident": null
}
]
},
"threat_type": {
"_id": null,
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201608-024"
}
],
"trust": 0.6
},
"title": {
"_id": null,
"data": "Nexus 7 (2013) Run on device Android Privileged vulnerability in Kernel",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2016-004257"
}
],
"trust": 0.8
},
"type": {
"_id": null,
"data": "permissions and access control",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201608-024"
}
],
"trust": 0.6
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…