Red Hat Customer Portal

Skip to main content

CVE-2013-1858

The clone system-call implementation in the Linux kernel before 3.8.3 does not properly handle a combination of the CLONE_NEWUSER and CLONE_FS flags, which allows local users to gain privileges by calling chroot and leveraging the sharing of the / directory between a parent process and a child process.

Details Source

Mitre

Statement

This issue did not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG 2.

This issue did not affect the versions of the Linux kernel as shipped with Fedora 17 and 18 as they were not built with CONFIG_USER_NS configuration option.

Public Date

2013-03-13 00:00:00

Impact

Important

Bugzilla

CVE-2013-1858 kernel: CLONE_NEWUSER | CLONE_FS chroot exploit

Bugzilla ID

921 448

CVSS Status

draft

Base Score

7.20

Base Metrics

AV:L/AC:L/Au:N/C:C/I:C/A:C

CWE

CWE-284

Affected Packages State

Platform Package State
Red Hat Enterprise MRG 2 realtime-kernel Not affected
Red Hat Enterprise Linux 6 kernel Not affected
Red Hat Enterprise Linux 5 kernel Not affected