Linux kernel Security Restriction Bypass Vulnerability (CVE-2015-2830)

Linux kernel Security Restriction Bypass Vulnerability (CVE-2015-2830)
Linux kernel Security Restriction Bypass Vulnerability (CVE-2015-2830)

Release date:
Updated on:

Affected Systems:

Linux kernel 〈 3.19.2

Description:

CVE (CAN) ID: CVE-2015-2830

Linux Kernel is the Kernel of the Linux operating system.

In versions earlier than Linux kernel 3.19.2, arch/x86/kernel/entry_64.S allows the TS_COMPAT flag to access user-mode tasks. Local Users use fork or close system calls through constructed applications, this vulnerability can bypass seccomp or aduit protection.

<* Source: Vasyl Kaigorodov
*>

Suggestion:

Vendor patch:

Linux
-----
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:

Https://github.com/torvalds/linux/commit/956421fbb74c3a6261903f3836c0740187cf038b

Https://bugzilla.redhat.com/show_bug.cgi? Id = 1208598

Http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.19.2

Http://git.kernel.org /? P = linux/kernel/git/torvalds/linux-2.6.git; a = commit; h = 956421fbb74c3a6261903f3836c0740187cf038b

Linux Kernel 4.2.2 compilation and installation tutorial

Ubuntu 15.10 will use the Linux Kernel 4.2 Kernel

How to install Kernel 4.0.2 on CentOS 7

How to install Linux Kernel 4.0 on CentOS 7

How to install Linux kernel 4.0 on Ubuntu/CentOS?

How to install Linux kernel 13.10 On Ubuntu 3.12

How to install the 3.16.7 CKT2 kernel in Ubuntu 14.10, Ubuntu 14.04, and its derivative versions

Linux Kernel: click here
Linux Kernel: click here

This article permanently updates the link address: