CVE-2015-2830

Debian Linux < 3.19.1 - Access Control

Title source: rule
STIX 2.1

Description

arch/x86/kernel/entry_64.S in the Linux kernel before 3.19.2 does not prevent the TS_COMPAT flag from reaching a user-mode task, which might allow local users to bypass the seccomp or audit protection mechanism via a crafted application that uses the (1) fork or (2) close system call, as demonstrated by an attack against seccomp before 3.16.

References (16)

Core 16
Core References
Vendor Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2631-1
Vendor Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2632-1
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1032413
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2015/dsa-3237
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-1138.html
Issue Tracking x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=1208598
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-1137.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-1221.html
Mailing List mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2015/04/02/1

Scores

EPSS 0.0004
EPSS Percentile 12.5%

Details

CWE
CWE-264
Status published
Products (4)
canonical/ubuntu_linux 12.04
debian/debian_linux 7.0
debian/debian_linux 8.0
linux/linux_kernel < 3.19.1
Published May 27, 2015
Tracked Since Feb 18, 2026