fs/namespace.c in the Linux kernel through 3.16.1 does not properly restrict clearing MNT_NODEV, MNT_NOSUID, and MNT_NOEXEC and changing MNT_ATIME_MASK during a remount of a bind mount, which allows local users to gain privileges, interfere with backups and auditing on systems that had atime enabled, or cause a denial of service (excessive filesystem updating) on systems that had atime disabled via a "mount -o remount" command within a user namespace.
References
Configurations
History
07 Nov 2023, 02:20
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2014-08-18 11:15
Updated : 2024-02-28 12:20
NVD link : CVE-2014-5207
Mitre link : CVE-2014-5207
CVE.ORG link : CVE-2014-5207
JSON object : View
Products Affected
linux
- linux_kernel
canonical
- ubuntu_linux
CWE
CWE-269
Improper Privilege Management