Candidate: CVE-2013-4362
PublicDate: 2013-09-30 22:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4362
 http://savannah.nongnu.org/bugs/?40034
Description:
 WEB-DAV Linux File System (davfs2) 1.4.6 and 1.4.7 allow local users to
 gain privileges via unknown attack vectors in (1) kernel_interface.c and
 (2) mount_davfs.c, related to the "system" function.
Ubuntu-Description:
Notes:
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=723034
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_davfs2:
upstream_davfs2: released (1.4.7-3)
lucid_davfs2: ignored (reached end-of-life)
precise_davfs2: ignored (reached end-of-life)
precise/esm_davfs2: DNE (precise was needs-triage)
quantal_davfs2: ignored (reached end-of-life)
raring_davfs2: ignored (reached end-of-life)
saucy_davfs2: ignored (reached end-of-life)
trusty_davfs2: not-affected (1.4.7-3)
trusty/esm_davfs2: DNE (trusty was not-affected [1.4.7-3])
utopic_davfs2: ignored (reached end-of-life)
vivid_davfs2: ignored (reached end-of-life)
vivid/stable-phone-overlay_davfs2: DNE
vivid/ubuntu-core_davfs2: DNE
wily_davfs2: ignored (reached end-of-life)
xenial_davfs2: not-affected (1.5.2-1.2)
yakkety_davfs2: ignored (reached end-of-life)
zesty_davfs2: ignored (reached end-of-life)
artful_davfs2: ignored (reached end-of-life)
bionic_davfs2: not-affected (1.5.4-2)
devel_davfs2: not-affected (1.5.4-3)