Wind River Support Network

HomeDefectsLIN5-20458
Fixed

LIN5-20458 : Security Advisory - linux - CVE-2015-2830

Created: May 31, 2015    Updated: Dec 19, 2017
Resolved Date: Jun 22, 2015
Found In Version: 5.0.1.26
Fix Version: 5.0.1.28
Severity: Standard
Applicable for: Wind River Linux 5
Component/s: Kernel

Description

arch/x86/kernel/entry_64.S in the Linux kernel before 3.19.2 does not prevent the TS_COMPAT flag from reaching a user-mode task, which might allow local users to bypass the seccomp or audit protection mechanism via a crafted application that uses the (1) fork or (2) close system call, as demonstrated by an attack against seccomp before 3.16.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-2830

Other Downloads


Live chat
Online