CVE-2019-13272
Description
In the Linux kernel before 5.1.17, ptrace_link in kernel/ptrace.c mishandles the recording of the credentials of a process that wants to create a ptrace relationship, which allows local users to obtain root access by leveraging certain scenarios with a parent-child process relationship, where a parent drops privileges and calls execve (potentially allowing control by an attacker). One contributing factor is an object lifetime issue (which can also cause a panic). Another contributing factor is incorrect marking of a ptrace relationship as privileged, which is exploitable through (for example) Polkits pkexec helper with PTRACE_TRACEME. NOTE: SELinux deny_ptrace might be a usable workaround in some environments.
Risk Information
Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
81.252
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Linux kernel (USN-4094-1) linux-image-gcp_4.15.0.1040.42_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-gcp_4.15.0.1040.54_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-gke_4.15.0.1040.43_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-gke_4.15.0.1040.54_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-kvm_4.15.0.1042.42_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-oem_4.15.0.58.79_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-oem_4.15.0.1050.54_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-azure_4.15.0.1055.58_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-oracle_4.15.0.1021.15_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-oracle_4.15.0.1021.24_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-generic_4.15.0.58.60_i386.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-generic_4.15.0.58.60_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-virtual_4.15.0.58.60_i386.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-virtual_4.15.0.58.60_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-gke-4.15_4.15.0.1040.43_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-lowlatency_4.15.0.58.60_i386.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-lowlatency_4.15.0.58.60_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-4.15.0-1040-gcp_4.15.0-1040.42_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-4.15.0-1040-gcp_4.15.0-1040.42~16.04.1_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-4.15.0-1040-gke_4.15.0-1040.42_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-4.15.0-1042-kvm_4.15.0-1042.42_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-4.15.0-1050-oem_4.15.0-1050.57_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-4.15.0-1055-azure_4.15.0-1055.60_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-4.15.0-58-generic_4.15.0-58.64_i386.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-4.15.0-58-generic_4.15.0-58.64_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-4.15.0-58-generic_4.15.0-58.64~16.04.1_i386.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-4.15.0-58-generic_4.15.0-58.64~16.04.1_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-generic-hwe-16.04_4.15.0.58.79_i386.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-generic-hwe-16.04_4.15.0.58.79_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-virtual-hwe-16.04_4.15.0.58.79_i386.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-virtual-hwe-16.04_4.15.0.58.79_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-4.15.0-1021-oracle_4.15.0-1021.23_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-4.15.0-1021-oracle_4.15.0-1021.23~16.04.1_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-4.15.0-58-lowlatency_4.15.0-58.64_i386.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-4.15.0-58-lowlatency_4.15.0-58.64_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-4.15.0-58-lowlatency_4.15.0-58.64~16.04.1_i386.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-4.15.0-58-lowlatency_4.15.0-58.64~16.04.1_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-lowlatency-hwe-16.04_4.15.0.58.79_i386.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-lowlatency-hwe-16.04_4.15.0.58.79_amd64.deb | Linux |
| Linux kernel (USN-4095-1) linux-image-aws_4.4.0.1090.94_amd64.deb | Linux |
| Linux kernel (USN-4095-1) linux-image-kvm_4.4.0.1054.54_amd64.deb | Linux |
| Linux kernel (USN-4095-1) linux-image-generic_4.4.0.159.167_i386.deb | Linux |
| Linux kernel (USN-4095-1) linux-image-generic_4.4.0.159.167_amd64.deb | Linux |
| Linux kernel (USN-4095-1) linux-image-virtual_4.4.0.159.167_i386.deb | Linux |
| Linux kernel (USN-4095-1) linux-image-virtual_4.4.0.159.167_amd64.deb | Linux |
| Linux kernel (USN-4095-1) linux-image-lowlatency_4.4.0.159.167_i386.deb | Linux |
| Linux kernel (USN-4095-1) linux-image-lowlatency_4.4.0.159.167_amd64.deb | Linux |
| Linux kernel (USN-4095-1) linux-image-4.4.0-1054-kvm_4.4.0-1054.61_amd64.deb | Linux |
| Linux kernel (USN-4095-1) linux-image-4.4.0-1090-aws_4.4.0-1090.101_amd64.deb | Linux |
| Linux kernel (USN-4095-1) linux-image-4.4.0-159-generic_4.4.0-159.187_i386.deb | Linux |
| Linux kernel (USN-4095-1) linux-image-4.4.0-159-generic_4.4.0-159.187_amd64.deb | Linux |
| Linux kernel (USN-4095-1) linux-image-4.4.0-159-lowlatency_4.4.0-159.187_i386.deb | Linux |
| Linux kernel (USN-4095-1) linux-image-4.4.0-159-lowlatency_4.4.0-159.187_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-4118-1) linux-image-aws_4.15.0.1047.46_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-4118-1) linux-image-aws-hwe_4.15.0.1047.47_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-4118-1) linux-image-4.15.0-1047-aws_4.15.0-1047.49_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-4118-1) linux-image-4.15.0-1047-aws_4.15.0-1047.49~16.04.1_amd64.deb | Linux |
| (RHSA-2019:2411) kernel security update bpftool-4.18.0-80.7.2.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2411) kernel security update kernel-4.18.0-80.7.2.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2411) kernel security update kernel-abi-whitelists-4.18.0-80.7.2.el8_0.noarch.rpm | Linux |
| (RHSA-2019:2411) kernel security update kernel-core-4.18.0-80.7.2.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2411) kernel security update kernel-cross-headers-4.18.0-80.7.2.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2411) kernel security update kernel-debug-4.18.0-80.7.2.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2411) kernel security update kernel-debug-core-4.18.0-80.7.2.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2411) kernel security update kernel-debug-devel-4.18.0-80.7.2.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2411) kernel security update kernel-debug-modules-4.18.0-80.7.2.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2411) kernel security update kernel-debug-modules-extra-4.18.0-80.7.2.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2411) kernel security update kernel-devel-4.18.0-80.7.2.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2411) kernel security update kernel-doc-4.18.0-80.7.2.el8_0.noarch.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234