4.6 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
0.0004 Low
EPSS
Percentile
5.1%
The Linux kernel through 3.17.4 does not properly restrict dropping of
supplemental group memberships in certain namespace scenarios, which allows
local users to bypass intended file permissions by leveraging a POSIX ACL
containing an entry for the group category that is more restrictive than
the entry for the other category, aka a “negative groups” issue, related to
kernel/groups.c, kernel/uid16.c, and kernel/user_namespace.c.
Author | Note |
---|---|
jdstrand | android kernels (flo, goldfish, grouper, maguro, mako and manta) are not supported on the Ubuntu Touch 14.04 preview kernels linux-lts-saucy no longer receives official support linux-lts-quantal no longer receives official support |
sbeattie | for precise/3.2 kernel, prio is low, due to lack of support for unprivileged user namespaces |
thread.gmane.org/gmane.linux.man/7385/
www.openwall.com/lists/oss-security/2014/11/20/4
launchpad.net/bugs/cve/CVE-2014-8989
nvd.nist.gov/vuln/detail/CVE-2014-8989
security-tracker.debian.org/tracker/CVE-2014-8989
ubuntu.com/security/notices/USN-2515-1
ubuntu.com/security/notices/USN-2516-1
ubuntu.com/security/notices/USN-2517-1
ubuntu.com/security/notices/USN-2518-1
www.cve.org/CVERecord?id=CVE-2014-8989