Lucene search
F5F5:K91025336HistoryAug 30, 2019 - 12:00 a.m.
K91025336 : Linux kernel vulnerability CVE-2019-13272
2019-08-3000:00:00
my.f5.com
120
Security Advisory Description
In the Linux kernel before 5.1.17, ptrace_link in kernel/ptrace.c mishandles the recording of the credentials of a process that wants to create a ptrace relationship, which allows local users to obtain root access by leveraging certain scenarios with a parent-child process relationship, where a parent drops privileges and calls execve (potentially allowing control by an attacker). One contributing factor is an object lifetime issue (which can also cause a panic). Another contributing factor is incorrect marking of a ptrace relationship as privileged, which is exploitable through (for example) Polkitβs pkexec helper with PTRACE_TRACEME. NOTE: SELinux deny_ptrace might be a usable workaround in some environments. (CVE-2019-13272)
Impact
There is no impact; F5 products are not affected by this vulnerability.
Related
ubuntucve
ubuntucve
CVE-2019-13272
2019-07-17 00:00:00
zdt
zdt
Linux PTRACE_TRACEME Local Root Exploit
2020-03-26 00:00:00
packetstorm
packetstorm
Linux Kernel 5.1.x PTRACE_TRACEME pkexec Local Privilege Escalation
2021-11-23 00:00:00
Linux Polkit pkexec Helper PTRACE_TRACEME Local Root
2019-10-23 00:00:00
Linux PTRACE_TRACEME Local Root
2020-03-26 00:00:00
githubexploit
githubexploit
Exploit for Improper Privilege Management in Linux Linux Kernel
2019-08-07 01:21:26
Exploit for Improper Privilege Management in Linux Linux Kernel
2019-09-19 01:58:35
Exploit for Improper Privilege Management in Linux Linux Kernel
2019-07-31 04:51:43
osv
osv
CVE-2019-13272
2019-07-17 13:15:10
linux-4.9 - security update
2019-07-23 00:00:00
linux - security update
2019-07-20 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-1863-1)
2019-07-24 00:00:00
Fedora Update for kernel-headers FEDORA-2019-a95015e60f
2019-07-20 00:00:00
Debian: Security Advisory (DSA-4484-1)
2019-07-21 00:00:00
cve
cve
CVE-2019-13272
2019-07-17 13:15:10
debian
debian
[SECURITY] [DLA 1863-1] linux-4.9 security update
2019-07-23 17:48:52
[SECURITY] [DSA 4484-1] linux security update
2019-07-20 14:34:14
[SECURITY] [DSA 4484-1] linux security update
2019-07-20 14:34:14
nessus
nessus
Fedora 29 : kernel / kernel-headers (2019-a95015e60f)
2019-07-19 00:00:00
Debian DLA-1863-1 : linux-4.9 security update
2019-07-24 00:00:00
SUSE SLES12 Security Update : kernel (SUSE-SU-2019:3263-1)
2019-12-12 00:00:00
attackerkb
attackerkb
CVE-2019-13272
2019-07-17 00:00:00
prion
prion
Design/Logic Flaw
2019-07-17 13:15:00
nvd
nvd
CVE-2019-13272
2019-07-17 13:15:10
redhatcve
redhatcve
CVE-2019-13272
2019-10-16 06:44:39
exploitpack
exploitpack
Linux Kernel 4.10 5.1.17 - PTRACE_TRACEME pkexec Local Privilege Escalation
2019-07-24 00:00:00
debiancve
debiancve
CVE-2019-13272
2019-07-17 13:15:10
fedora
fedora
[SECURITY] Fedora 29 Update: kernel-headers-5.1.18-200.fc29
2019-07-19 03:07:30
[SECURITY] Fedora 29 Update: kernel-5.1.18-200.fc29
2019-07-19 03:07:30
cisa_kev
cisa_kev
Linux Kernel Improper Privilege Management Vulnerability
2021-12-10 00:00:00
metasploit
metasploit
Linux Polkit pkexec helper PTRACE_TRACEME local root exploit
2019-09-05 17:00:44
cvelist
cvelist
CVE-2019-13272
2019-07-17 12:32:55
exploitdb
exploitdb
oraclelinux
oraclelinux
kernel security update
2019-08-19 00:00:00
Unbreakable Enterprise kernel security update
2019-08-15 00:00:00
kernel security and bug fix update
2019-09-12 00:00:00
redhat
redhat
(RHSA-2019:2405) Important: kernel-rt security update
2019-08-07 12:47:49
(RHSA-2019:2411) Important: kernel security update
2019-08-07 14:59:04
ibm
ibm
Security Bulletin: Vyatta 5600 vRouter Software Patches - Release 1801-zb
2019-09-11 17:35:09
amazon
amazon
Important: kernel
2019-07-18 17:16:00
Important: kernel
2019-07-17 23:18:00
thn
thn
ExCobalt Cyber Gang Targets Russian Sectors with New GoRed Backdoor
2024-06-22 11:28:00
photon
photon
Critical Photon OS Security Update - PHSA-2019-0245
2019-07-24 00:00:00
Critical Photon OS Security Update - PHSA-2019-0175
2019-09-03 00:00:00
Critical Photon OS Security Update - PHSA-2019-0026
2019-08-21 00:00:00
slackware
slackware
[slackware-security] Slackware 14.2 kernel
2019-07-22 04:08:19
ubuntu
ubuntu
Linux kernel vulnerabilities
2019-08-13 00:00:00
Linux kernel vulnerabilities
2019-08-13 00:00:00
Linux kernel (AWS) vulnerabilities
2019-09-02 00:00:00
cloudfoundry
cloudfoundry
USN-4095-2: Linux kernel (Xenial HWE) vulnerabilities | Cloud Foundry
2019-08-29 00:00:00
USN-4094-1: Linux kernel vulnerabilities | Cloud Foundry
2019-09-30 00:00:00
cisa
cisa
CISA Adds Thirteen Known Exploited Vulnerabilities to Catalog
2021-12-10 00:00:00
CISA Adds 13 Known Exploited Vulnerabilities to Catalog
2021-12-10 00:00:00
androidsecurity
androidsecurity
Pixel Update BulletinβMarch 2020
2020-03-02 00:00:00
lenovo
lenovo
AMI MegaRAC SP-X BMC Vulnerabilities - Lenovo Support US
2020-04-13 19:22:04
qualysblog
qualysblog
Managing CISA Known Exploited Vulnerabilities with Qualys VMDR
2022-02-23 05:39:00