** Description changed: - CLONE_NEWUSER|CLONE_FS root exploit + The clone system-call implementation in the Linux kernel before 3.8.3 + does not properly handle a combination of the CLONE_NEWUSER and CLONE_FS + flags, which allows local users to gain privileges by calling chroot and + leveraging the sharing of the / directory between a parent process and a + child process. Break-Fix: 5eaf563e53294d6696e651466697eb9d491f3946 e66eded8309ebf679d3d3c1f5820d1f2ca332c71
-- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1156778 Title: CVE-2013-1858 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1156778/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
