Your submission was sent successfully! Close

CVE-2013-1957

Published: 24 April 2013

The clone_mnt function in fs/namespace.c in the Linux kernel before 3.8.6 does not properly restrict changes to the MNT_READONLY flag, which allows local users to bypass an intended read-only property of a filesystem by leveraging a separate mount namespace.

Priority

High

Status

Package Release Status
linux
Launchpad, Ubuntu, Debian
Upstream
Released (3.9~rc5)
Patches:
Introduced by 0c55cfc4166d9a0f38de779bd4d75a90afbe7734
Fixed by 90563b198e4c6674c63672fae1923da467215f45
Introduced by 0c55cfc4166d9a0f38de779bd4d75a90afbe7734
Fixed by 132c94e31b8bca8ea921f9f96a57d684fa4ae0a9
linux-armadaxp
Launchpad, Ubuntu, Debian
Upstream
Released (3.9~rc5)
This package is not directly supported by the Ubuntu Security Team
linux-ec2
Launchpad, Ubuntu, Debian
Upstream
Released (3.9~rc5)
linux-fsl-imx51
Launchpad, Ubuntu, Debian
Upstream
Released (3.9~rc5)
linux-linaro-omap
Launchpad, Ubuntu, Debian
Upstream
Released (3.9~rc5)
linux-linaro-shared
Launchpad, Ubuntu, Debian
Upstream
Released (3.9~rc5)
linux-linaro-vexpress
Launchpad, Ubuntu, Debian
Upstream
Released (3.9~rc5)
linux-lts-backport-maverick
Launchpad, Ubuntu, Debian
Upstream
Released (3.9~rc5)
linux-lts-backport-oneiric
Launchpad, Ubuntu, Debian
Upstream
Released (3.9~rc5)
linux-lts-quantal
Launchpad, Ubuntu, Debian
Upstream
Released (3.9~rc5)
linux-mvl-dove
Launchpad, Ubuntu, Debian
Upstream
Released (3.9~rc5)
linux-qcm-msm
Launchpad, Ubuntu, Debian
Upstream
Released (3.9~rc5)
linux-ti-omap4
Launchpad, Ubuntu, Debian
Upstream
Released (3.9~rc5)