CVE-2013-1959
CVE-2013-1959
kernel/user_namespace.c in the Linux kernel before 3.8.9 does not have appropriate capability requirements for the uid_map and gid_map files, which allows local users to gain privileges by opening a file within an unprivileged process and then modifying the file within a privileged process.
Affected products
n/a · n/apublic PoCs found — 2
cve_referencewww.exploit-db.com/exploits/25307unverifiedexploitdbwww.exploit-db.com/exploits/25450unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=6708075f104c3c9b04b23336bb0366ca30c3931bhttp://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=e3211c120a85b792978bcb4be7b2886df18d27f0https://github.com/torvalds/linux/commit/6708075f104c3c9b04b23336bb0366ca30c3931bhttps://github.com/torvalds/linux/commit/e3211c120a85b792978bcb4be7b2886df18d27f0http://www.exploit-db.com/exploits/25307http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.8.9http://www.openwall.com/lists/oss-security/2013/04/29/1