SecurityTracker.com
Keep Track of the Latest Vulnerabilities
with SecurityTracker!
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 
Sign Up
Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary
Instant Alerts
Buy our Premium Vulnerability Notification Service to receive customized, instant alerts
Affiliates
Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!
Partners
Become a Partner and License Our Database or Notification Service
Report a Bug
Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com






Category:   OS (Linux)  >   Linux Kernel Vendors:   kernel.org
(Oracle Issues Fix for Oracle Linux) Linux Kernel Race Condition in inotify_handle_event() and vfs_rename() Lets Local Users Gain Elevated Privileges
SecurityTracker Alert ID:  1039168
SecurityTracker URL:  http://securitytracker.com/id/1039168
CVE Reference:   CVE-2017-7533   (Links to External Site)
Date:  Aug 16 2017
Impact:   Execution of arbitrary code via local system, Root access via local system
Fix Available:  Yes  Vendor Confirmed:  Yes  Exploit Included:  Yes  
Version(s): Oracle Linux 7
Description:   A vulnerability was reported in the Linux kernel. A local user can obtain elevated privileges on the target system.

A local user can exploit a race condition in inotify_handle_event() and vfs_rename() when renaming the target file to overwrite slab data or pointers and execute arbitrary code on the target system with elevated privileges.

Fan Wu and Shixiong Zhao from a research group supervised by Dr. Heming Cui of the Department of Computer Science, The University of Hong Kong, reported this vulnerability.

Impact:   A local user can obtain elevated privileges on the target system.
Solution:   Oracle has issued a fix.

The Oracle Linux advisory is available at:

http://linux.oracle.com/errata/ELSA-2017-2473.html

Vendor URL:  linux.oracle.com/errata/ELSA-2017-2473.html (Links to External Site)
Cause:   Access control error, State error

Message History:   This archive entry is a follow-up to the message listed below.
Aug 4 2017 Linux Kernel Race Condition in inotify_handle_event() and vfs_rename() Lets Local Users Gain Elevated Privileges



 Source Message Contents

Subject:  [El-errata] ELSA-2017-2473 Important: Oracle Linux 7 kernel security and bug fix update

Oracle Linux Security Advisory ELSA-2017-2473

http://linux.oracle.com/errata/ELSA-2017-2473.html

The following updated rpms for Oracle Linux 7 have been uploaded to the 
Unbreakable Linux Network:

x86_64:
kernel-3.10.0-693.1.1.el7.x86_64.rpm
kernel-abi-whitelists-3.10.0-693.1.1.el7.noarch.rpm
kernel-debug-3.10.0-693.1.1.el7.x86_64.rpm
kernel-debug-devel-3.10.0-693.1.1.el7.x86_64.rpm
kernel-devel-3.10.0-693.1.1.el7.x86_64.rpm
kernel-doc-3.10.0-693.1.1.el7.noarch.rpm
kernel-headers-3.10.0-693.1.1.el7.x86_64.rpm
kernel-tools-3.10.0-693.1.1.el7.x86_64.rpm
kernel-tools-libs-3.10.0-693.1.1.el7.x86_64.rpm
kernel-tools-libs-devel-3.10.0-693.1.1.el7.x86_64.rpm
perf-3.10.0-693.1.1.el7.x86_64.rpm
python-perf-3.10.0-693.1.1.el7.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/kernel-3.10.0-693.1.1.el7.src.rpm



Description of changes:

- [3.10.0-693.1.1.el7.OL7]
- Oracle Linux certificates (Alexey Petrenko)
- Oracle Linux RHCK Module Signing Key was compiled into kernel 
(olkmod_signing_key.x509)(alexey.petrenko@oracle.com)
- Update x509.genkey [bug 24817676]

[3.10.0-693.1.1.el7]
- [fs] dentry name snapshots (Miklos Szeredi) [1471131 1470403] 
{CVE-2017-7533}
- [fs] fix the regression from "direct-io: Fix negative return from dio 
read beyond eof" (Eric Sandeen) [1475669 1473549]
- [fs] direct-io: Fix negative return from dio read beyond eof (Eric 
Sandeen) [1475669 1473549]


_______________________________________________
El-errata mailing list
El-errata@oss.oracle.com
https://oss.oracle.com/mailman/listinfo/el-errata
 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

Copyright 2017, SecurityGlobal.net LLC