Detections
Analytics
Ubuntu 14.04 LTS : Linux kernel (Vivid HWE) vulnerability (USN-2857-2)
medium Nessus Plugin ID 87758
Language:
Synopsis
The remote Ubuntu host is missing a security update.Description
The remote Ubuntu 14.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-2857-2 advisory.- The ovl_setattr function in fs/overlayfs/inode.c in the Linux kernel through 4.3.3 attempts to merge distinct setattr operations, which allows local users to bypass intended access restrictions and modify the attributes of arbitrary overlay files via a crafted application. (CVE-2015-8660)
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.
Solution
Update the affected kernel package.See Also
Plugin Details
Severity: Medium
ID: 87758
File Name: ubuntu_USN-2857-2.nasl
Version: 2.19
Type: local
Agent: unix
Family: Ubuntu Local Security Checks
Published: 1/6/2016
Updated: 1/9/2024
Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus
Risk Information
VPR
Risk Factor: Critical
Score: 9.6
CVSS v2
Risk Factor: High
Base Score: 7.2
Temporal Score: 6.3
Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C
CVSS Score Source: CVE-2015-8660
CVSS v3
Risk Factor: Medium
Base Score: 6.7
Temporal Score: 6.4
Vector: CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:H/RL:O/RC:C
Vulnerability Information
CPE: p-cpe:/a:canonical:ubuntu_linux:linux-image-3.19.0-43-generic, p-cpe:/a:canonical:ubuntu_linux:linux-image-3.19.0-43-generic-lpae, p-cpe:/a:canonical:ubuntu_linux:linux-image-3.19.0-43-lowlatency, p-cpe:/a:canonical:ubuntu_linux:linux-image-3.19.0-43-powerpc-e500mc, p-cpe:/a:canonical:ubuntu_linux:linux-image-3.19.0-43-powerpc-smp, p-cpe:/a:canonical:ubuntu_linux:linux-image-3.19.0-43-powerpc64-emb, p-cpe:/a:canonical:ubuntu_linux:linux-image-3.19.0-43-powerpc64-smp, cpe:/o:canonical:ubuntu_linux:14.04:-:lts
Required KB Items: Host/cpu, Host/Debian/dpkg-l, Host/Ubuntu, Host/Ubuntu/release
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 1/5/2016
Vulnerability Publication Date: 12/28/2015
Exploitable With
CANVAS (CANVAS)
Core Impact
Metasploit (Overlayfs Privilege Escalation)
Reference Information
CVE: CVE-2015-8660
USN: 2857-2