Bug#823603: linux: [Local root exploit] Use after free via double-fdput in bpf

To: <submit@bugs.debian.org>
Subject: Bug#823603: linux: [Local root exploit] Use after free via double-fdput in bpf
From: <mike_b@tutanota.com>
Date: Fri, 6 May 2016 13:06:42 +0100 (BST)
Message-id: <[🔎] KH4xaU6--3-0@tutanota.com>
Reply-to: <mike_b@tutanota.com>, 823603@bugs.debian.org

Source: linux
Severity: critical
Tags: security newcomer
Justification: root security hole

Dear Maintainer,

A local root privilege escalation exploit (no CVE currently available) for Linux >=4.4 was reported in:

https://bugs.chromium.org/p/project-zero/issues/detail?id=808

As far as I can tell, the bug does not yet appear in the Debian Security Tracker.

-----

The upstream fix can be found in that same link, or more directly at:

https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=8358b02bf67d3a5d8a825070e1aa73f25fb2e4c7

Other relevant links:

https://people.canonical.com/~ubuntu-security/cve/2016/CVE-2016-NNN1.html

Thanks.

-- System Information:
Debian Release: stretch/sid
APT prefers testing
APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 4.5.0-1-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Reply to:

Follow-Ups:
- Bug#823603: linux: [Local root exploit] Use after free via double-fdput in bpf
  - From: Salvatore Bonaccorso <carnil@debian.org>
- Bug#823603: marked as done (linux: CVE-2016-4557: [Local root exploit] Use after free via double-fdput in bpf)
  - From: owner@bugs.debian.org (Debian Bug Tracking System)

Prev by Date: Bug#823601: linux-image-4.5.0-1-amd64: radeon related errors reported
Next by Date: Processed: tagging 823603
Previous by thread: Bug#823601: linux-image-4.5.0-1-amd64: radeon related errors reported
Next by thread: Bug#823603: linux: [Local root exploit] Use after free via double-fdput in bpf
Index(es):
- Date
- Thread