In the Linux kernel before 5.1.17, ptrace_link in kernel/ptrace.c mishandles the recording of the credentials of a process that wants to create a ptrace relationship, which allows local users to obtain root access by leveraging certain scenarios with a parent-child process relationship, where a parent drops privileges and calls execve (potentially allowing control by an attacker). One contributing factor is an object lifetime issue (which can also cause a panic). Another contributing factor is incorrect marking of a ptrace relationship as privileged, which is exploitable through (for example) Polkit's pkexec helper with PTRACE_TRACEME. NOTE: SELinux deny_ptrace might be a usable workaround in some environments.

In the Linux kernel before 5.1.17, ptrace_link in kernel/ptrace.c mishandles the recording of the credentials of a process that wants to create a ptrace relationship, which allows local users to obtain root access by leveraging certain scenarios with a parent-child process relationship, where a parent drops privileges and calls execve (potentially allowing control by an attacker). One contributing factor is an object lifetime issue (which can also cause a panic). Another contributing factor is incorrect marking of a ptrace relationship as privileged, which is exploitable through (for example) Polkit's pkexec helper with PTRACE_TRACEME. NOTE: SELinux deny_ptrace might be a usable workaround in some environments.

In the Linux kernel before 5.1.17, ptrace_link in kernel/ptrace.c mishandles the recording of the credentials of a process that wants to create a ptrace relationship, which allows local users to obtain root access by leveraging certain scenarios with a parent-child process relationship, where a parent drops privileges and calls execve (potentially allowing control by an attacker). One contributing factor is an object lifetime issue (which can also cause a panic). Another contributing factor is incorrect marking of a ptrace relationship as privileged, which is exploitable through (for example) Polkit's pkexec helper with PTRACE_TRACEME. NOTE: SELinux deny_ptrace might be a usable workaround in some environments.

In the Linux kernel before 5.1.17, ptrace_link in kernel/ptrace.c mish ...

In the Linux kernel before 5.1.17, ptrace_link in kernel/ptrace.c mishandles the recording of the credentials of a process that wants to create a ptrace relationship, which allows local users to obtain root access by leveraging certain scenarios with a parent-child process relationship, where a parent drops privileges and calls execve (potentially allowing control by an attacker). One contributing factor is an object lifetime issue (which can also cause a panic). Another contributing factor is incorrect marking of a ptrace relationship as privileged, which is exploitable through (for example) Polkit's pkexec helper with PTRACE_TRACEME.

Уязвимость функции ptrace_link ядра операционных систем Linux, позволяющая нарушителю вызвать отказ в обслуживании или повысить свои привилегии

Security update for the Linux Kernel (Live Patch 32 for SLE 12 SP2)

Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP1)

Security update for the Linux Kernel (Live Patch 4 for SLE 12 SP4)

ELSA-2019-2411: kernel security update (IMPORTANT)

Security update for the Linux Kernel (Live Patch 31 for SLE 12 SP2)

Security update for the Linux Kernel (Live Patch 29 for SLE 12 SP2)

Security update for the Linux Kernel (Live Patch 1 for SLE 15 SP1)

Security update for the Linux Kernel (Live Patch 9 for SLE 15)

Security update for the Linux Kernel (Live Patch 27 for SLE 12 SP2)

Security update for the Linux Kernel (Live Patch 28 for SLE 12 SP3)

Security update for the Linux Kernel (Live Patch 3 for SLE 12 SP4)

Security update for the Linux Kernel (Live Patch 25 for SLE 12 SP3)

Security update for the Linux Kernel (Live Patch 8 for SLE 15)

Security update for the Linux Kernel (Live Patch 27 for SLE 12 SP3)