Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The clone system-call implementation in the Linux kernel before 3.8.3 does not properly handle a combination of the CLONE_NEWUSER and CLONE_FS flags, which allows local users to gain privileges by calling chroot and leveraging the sharing of the / directory between a parent process and a child process.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Linux Kernel ‘CLONE_NEWUSER|CLONE_FS’本地权限提升漏洞
Vulnerability Description
Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。NFSv4 implementation是其中的一个分布式文件系统协议。 Linux kernel 3.8.3之前版本中的克隆系统调用实现中存在漏洞,该漏洞源于程序没有正确地处理CLONE_NEWUSER与CLONE_FS标记的合并。通过调用更改根目录以及利用父进程与子进程之间共享/目录,本地攻击者可利用该漏洞进行提权。
CVSS Information
N/A
Vulnerability Type
N/A