Permissions, Privileges, and Access Controls in Linux kernel

#VU22746 Permissions, Privileges, and Access Controls in Linux kernel

Published: 2019-11-13 | Updated: 2020-03-23

Vulnerability identifier: #VU22746

Vulnerability risk: Low

CVSSv3.1:

CVE-ID: CVE-2019-17055

CWE-ID: CWE-264

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
Linux kernel
Operating systems & Components / Operating system

Vendor: Linux Foundation

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to the base_sock_create in drivers/isdn/mISDN/socket.c in the AF_ISDN network module for the Linux kernel does not enforce CAP_NET_RAW. A local unprivileged user can create a raw socket.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Linux kernel: 5.3 - 5.3.2

CPE

cpe:2.3:o:linux_foundation:linux_kernel:5.3.1:*:*:*:*:*:*:*

External links
http://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=0edc3f703f7bcaf550774b5d43ab727bcd0fe06b
http://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=b91ee4aa2a2199ba4d4650706c272985a5a32d80

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

Latest bulletins with this vulnerability

Multiple vulnerabilities in Juniper Junos Space

Red Hat Enterprise Linux 8 update for kernel

Red Hat Enterprise Linux 8 update for kernel-rt

CentOS 6 update for kernel

Red Hat Enterprise Linux 6 update for kernel

Red Hat Enterprise Linux Workstation 6 update for kernel