** Tags added: kernel-cve-tracking-bug
--
You received this bug notification because you are a member of Kernel
Packages, which is subscribed to linux-armadaxp in Ubuntu.
https://bugs.launchpad.net/bugs/1547400
Title:
aufs fails to handle sanitize xattrs in workdir, copies SUID binaries
from
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2016-2854
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2016-2853
--
You received this bug notification because you are a member of Kernel
Packages, which is subscribed to linux-armadaxp in Ubuntu.
https://bugs.l
** Changed in: linux-snapdragon (Ubuntu Precise)
Status: New => Invalid
** Changed in: linux-snapdragon (Ubuntu Precise)
Importance: Undecided => Low
** Changed in: linux-snapdragon (Ubuntu Wily)
Status: New => Invalid
** Changed in: linux-snapdragon (Ubuntu Wily)
Importance:
** Also affects: linux (Ubuntu Yakkety)
Importance: Low
Status: Confirmed
** Also affects: linux-ti-omap4 (Ubuntu Yakkety)
Importance: Low
Status: Invalid
** Also affects: linux-armadaxp (Ubuntu Yakkety)
Importance: Low
Status: Invalid
** Also affects: linux-lts-qua
** Changed in: linux-manta (Ubuntu Xenial)
Status: New => Invalid
--
You received this bug notification because you are a member of Kernel
Packages, which is subscribed to linux-armadaxp in Ubuntu.
https://bugs.launchpad.net/bugs/1547400
Title:
aufs fails to handle sanitize xattrs in wo
** Tags added: kernel-cve-skip-description
** Also affects: linux (Ubuntu Precise)
Importance: Undecided
Status: New
** Also affects: linux-armadaxp (Ubuntu Precise)
Importance: Undecided
Status: New
** Also affects: linux-lts-quantal (Ubuntu Precise)
Importance: Undecided
Note that the severity of this issue is lower than the similar issue
that was discovered in overlayfs since the aufs module has to be loaded
with the 'allow_userns' parameter.
--
You received this bug notification because you are a member of Kernel
Packages, which is subscribed to linux in Ubuntu
This is now public:
http://openwall.com/lists/oss-security/2016/02/24/9
** Information type changed from Private Security to Public Security
** Changed in: linux (Ubuntu)
Status: New => Confirmed
** Changed in: linux (Ubuntu)
Importance: Undecided => Medium
--
You received this bu
8 matches
Mail list logo