CVE 2008-2931
The do_change_type function in fs/namespace.c in the Linux kernel before 2.6.22 does not verify that the caller has the CAP_SYS_ADMIN capability, which allows local users to gain privileges or cause a denial of service by modifying the properties of a mountpoint.
Related bugs and status
CVE-2008-2931 (Candidate) is related to these bugs:
Bug #185025: Coolermaster Xcraft 360 USB drive fails
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
185025 | Coolermaster Xcraft 360 USB drive fails | linux-source-2.6.15 (Ubuntu) | Low | Fix Released | ||
185025 | Coolermaster Xcraft 360 USB drive fails | Linux | Medium | Invalid |
Bug #249340: Gutsy->Hardy upgrade hangs in localedef
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
249340 | Gutsy->Hardy upgrade hangs in localedef | linux-source-2.6.22 (Ubuntu) | High | Fix Released | ||
249340 | Gutsy->Hardy upgrade hangs in localedef | linux (Ubuntu) | Undecided | Invalid | ||
249340 | Gutsy->Hardy upgrade hangs in localedef | langpack-locales (Ubuntu) | Undecided | Invalid | ||
249340 | Gutsy->Hardy upgrade hangs in localedef | linux-source-2.6.15 (Ubuntu) | High | Fix Released | ||
249340 | Gutsy->Hardy upgrade hangs in localedef | langpack-locales (Ubuntu Dapper) | Undecided | Invalid | ||
249340 | Gutsy->Hardy upgrade hangs in localedef | linux (Ubuntu Dapper) | Undecided | Invalid | ||
249340 | Gutsy->Hardy upgrade hangs in localedef | linux-source-2.6.15 (Ubuntu Dapper) | High | Fix Released | ||
249340 | Gutsy->Hardy upgrade hangs in localedef | linux-source-2.6.22 (Ubuntu Dapper) | Undecided | Invalid | ||
249340 | Gutsy->Hardy upgrade hangs in localedef | langpack-locales (Ubuntu Gutsy) | Undecided | Invalid | ||
249340 | Gutsy->Hardy upgrade hangs in localedef | linux (Ubuntu Gutsy) | Undecided | Invalid | ||
249340 | Gutsy->Hardy upgrade hangs in localedef | linux-source-2.6.15 (Ubuntu Gutsy) | Undecided | Invalid | ||
249340 | Gutsy->Hardy upgrade hangs in localedef | linux-source-2.6.22 (Ubuntu Gutsy) | High | Fix Released |
Bug #253787: [CVE-2008-2931] Local privilege escalation in Linux (do_change_type() in fs/namespace.c)
See the
CVE page on Mitre.org
for more details.