CVE-2015-1350 — MEDIUM (5.5)

Q: How severe is CVE-2015-1350?

CVE-2015-1350 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2015-1350?

Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Redhat Enterprise Linux, Redhat Enterprise Mrg.

Vulnerability Description

The VFS subsystem in the Linux kernel 3.x provides an incomplete set of requirements for setattr operations that underspecifies removing extended privilege attributes, which allows local users to cause a denial of service (capability stripping) via a failed invocation of a system call, as demonstrated by using chown to remove a capability from the ping or Wireshark dumpcap program.

CVSS Score

5.5

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Linux	Linux Kernel	>= 3.0, <= 3.19.8
Redhat	Enterprise Linux	5.0
Redhat	Enterprise Mrg	2.0

Related Weaknesses (CWE)

CWE-552

References

http://marc.info/?l=linux-kernel&m=142153722930533&w=2Mailing ListPatchThird Party Advisory
http://www.openwall.com/lists/oss-security/2015/01/24/5Mailing ListThird Party Advisory
http://www.securityfocus.com/bid/76075Third Party AdvisoryVDB Entry
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770492ExploitMailing ListThird Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1185139Issue TrackingPatchThird Party Advisory
http://marc.info/?l=linux-kernel&m=142153722930533&w=2Mailing ListPatchThird Party Advisory
http://www.openwall.com/lists/oss-security/2015/01/24/5Mailing ListThird Party Advisory
http://www.securityfocus.com/bid/76075Third Party AdvisoryVDB Entry
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770492ExploitMailing ListThird Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1185139Issue TrackingPatchThird Party Advisory

FAQ

What is CVE-2015-1350?

CVE-2015-1350 is a vulnerability with a CVSS score of 5.5 (MEDIUM). The VFS subsystem in the Linux kernel 3.x provides an incomplete set of requirements for setattr operations that underspecifies removing extended privilege attributes, which allows local users to caus...

How severe is CVE-2015-1350?

CVE-2015-1350 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2015-1350?

Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Redhat Enterprise Linux, Redhat Enterprise Mrg.