Vulnerability Details : CVE-2014-4014
The capabilities implementation in the Linux kernel before 3.14.8 does not properly consider that namespaces are inapplicable to inodes, which allows local users to bypass intended chmod restrictions by first creating a user namespace, as demonstrated by setting the setgid bit on a file with group ownership of root.
Products affected by CVE-2014-4014
- cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2014-4014
0.06%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 25 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2014-4014
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
6.2
|
MEDIUM | AV:L/AC:H/Au:N/C:C/I:C/A:C |
1.9
|
10.0
|
NIST |
CWE ids for CVE-2014-4014
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2014-4014
-
http://secunia.com/advisories/59220
Sign inThird Party Advisory
-
https://source.android.com/security/bulletin/2016-12-01.html
Android Security Bulletin—December 2016 | Android Open Source ProjectThird Party Advisory
-
https://bugzilla.redhat.com/show_bug.cgi?id=1107966
1107966 – (CVE-2014-4014) CVE-2014-4014 Kernel: possible privilege escalation in user namespaceIssue Tracking;Third Party Advisory
-
http://www.securitytracker.com/id/1030394
Linux Kernel inode_capable() Incorrect Capability Check Lets Local Users Gain Elevated Privileges - SecurityTrackerThird Party Advisory;VDB Entry
-
https://github.com/torvalds/linux/commit/23adbe12ef7d3d4195e80800ab36b37bee28cd03
fs,userns: Change inode_capable to capable_wrt_inode_uidgid · torvalds/linux@23adbe1 · GitHubThird Party Advisory
-
http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.14.8
Vendor Advisory
-
http://www.exploit-db.com/exploits/33824
Linux Kernel 3.13 - SGID Privilege Escalation - Linux local ExploitThird Party Advisory;VDB Entry
-
http://www.securityfocus.com/bid/67988
Linux Kernel CVE-2014-4014 Local Privilege Escalation VulnerabilityThird Party Advisory;VDB Entry
-
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=23adbe12ef7d3d4195e80800ab36b37bee28cd03
kernel/git/torvalds/linux.git - Linux kernel source treeVendor Advisory
-
http://www.openwall.com/lists/oss-security/2014/06/10/4
oss-security - CVE-2014-4014: Linux kernel user namespace bugMailing List;Third Party Advisory
Jump to