CVE-2015-5231

Опубликовано: 07 июн. 2016

Источник: ubuntu

Приоритет: medium

CVSS2: 2.1

CVSS3: 5.5

Описание

The service daemon in CRIU does not properly restrict access to non-dumpable processes, which allows local users to obtain sensitive information via (1) process dumps or (2) ptrace access.

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	not-affected	2.6-1ubuntu1~ubuntu16.04.2
cosmic	not-affected	2.6-1ubuntu1~ubuntu16.04.2
devel	not-affected	2.6-1ubuntu1~ubuntu16.04.2
esm-apps/bionic	not-affected	2.6-1ubuntu1~ubuntu16.04.2
esm-apps/xenial	not-affected	2.6-1ubuntu1~ubuntu16.04.2
esm-infra-legacy/trusty	DNE
precise	DNE
precise/esm	DNE
trusty	DNE

Показывать по

Ссылки на источники

2.1 Low

CVSS2

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2015-5231

redhat

больше 10 лет назад

The service daemon in CRIU does not properly restrict access to non-dumpable processes, which allows local users to obtain sensitive information via (1) process dumps or (2) ptrace access.

CVE-2015-5231

CVSS3: 5.5

nvd

больше 9 лет назад

The service daemon in CRIU does not properly restrict access to non-dumpable processes, which allows local users to obtain sensitive information via (1) process dumps or (2) ptrace access.

CVE-2015-5231

CVSS3: 5.5

debian

больше 9 лет назад

The service daemon in CRIU does not properly restrict access to non-du ...

GHSA-7hr3-7mmr-77hp

CVSS3: 5.5

github

больше 3 лет назад

The service daemon in CRIU does not properly restrict access to non-dumpable processes, which allows local users to obtain sensitive information via (1) process dumps or (2) ptrace access.

2.1 Low

CVSS2

5.5 Medium

CVSS3

CVE-2015-5231

Описание

Пакет criu

Ссылки на источники

Связанные уязвимости