CVE-2015-3339 in Ubuntu

CVE-2015-3339

Priority

Description

Race condition in the prepare_binprm function in fs/exec.c in the Linux
kernel before 3.19.6 allows local users to gain privileges by executing a
setuid program at a time instant when a chown to root is in progress, and
the ownership is changed but the setuid bit is not yet stripped.

Ubuntu-Description

A race condition between chown() and execve() was discovered in the Linux
kernel. A local attacker could exploit this race by using chown on a
setuid-user-binary to gain administrative privileges.

References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3339
http://www.openwall.com/lists/oss-security/2015/04/20/1
https://usn.ubuntu.com/usn/usn-2583-1
https://usn.ubuntu.com/usn/usn-2584-1
https://usn.ubuntu.com/usn/usn-2596-1
https://usn.ubuntu.com/usn/usn-2597-1
https://usn.ubuntu.com/usn/usn-2598-1
https://usn.ubuntu.com/usn/usn-2599-1
https://usn.ubuntu.com/usn/usn-2600-1
https://usn.ubuntu.com/usn/usn-2601-1
https://usn.ubuntu.com/usn/usn-2612-1

Bugs

https://launchpad.net/bugs/1447373

Notes

jdstrand

android kernels (flo, goldfish, grouper, maguro, mako and manta) are
not supported on the Ubuntu Touch 14.10 and earlier preview kernels
linux-lts-saucy no longer receives official support
linux-lts-quantal no longer receives official support

Package

Source: linux (LP Ubuntu Debian)

Upstream:	released (4.1~rc1)
Ubuntu 12.04 ESM (Precise Pangolin):	released (3.2.0-83.120)
Ubuntu 14.04 ESM (Trusty Tahr):	released (3.13.0-52.85)
Ubuntu 16.04 LTS (Xenial Xerus):	not-affected (4.2.0-16.19)

Patches:

Upstream:

https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=8b01fc86b9f425899f8a3a8fc1c47d73c2c20543

Package

Source: linux-2.6 (LP Ubuntu Debian)

Upstream:	released (4.1~rc1)
Ubuntu 12.04 ESM (Precise Pangolin):	DNE
Ubuntu 14.04 ESM (Trusty Tahr):	DNE
Ubuntu 16.04 LTS (Xenial Xerus):	DNE

Package

Source: linux-armadaxp (LP Ubuntu Debian)

Upstream:	released (4.1~rc1)
Ubuntu 12.04 ESM (Precise Pangolin):	DNE (precise was released [3.2.0-1649.69])
Ubuntu 14.04 ESM (Trusty Tahr):	DNE
Ubuntu 16.04 LTS (Xenial Xerus):	DNE

This package is not directly supported by the Ubuntu Security Team

Package

Source: linux-aws (LP Ubuntu Debian)

Upstream:	released (4.1~rc1)
Ubuntu 12.04 ESM (Precise Pangolin):	DNE
Ubuntu 14.04 ESM (Trusty Tahr):	not-affected (4.4.0-1002.2)
Ubuntu 16.04 LTS (Xenial Xerus):	not-affected (4.4.0-1001.10)

Package

Source: linux-ec2 (LP Ubuntu Debian)

Upstream:	released (4.1~rc1)
Ubuntu 12.04 ESM (Precise Pangolin):	DNE
Ubuntu 14.04 ESM (Trusty Tahr):	DNE
Ubuntu 16.04 LTS (Xenial Xerus):	DNE

Package

Source: linux-flo (LP Ubuntu Debian)

Upstream:	released (4.1~rc1)
Ubuntu 12.04 ESM (Precise Pangolin):	DNE
Ubuntu 14.04 ESM (Trusty Tahr):	DNE (trusty was ignored)
Ubuntu 16.04 LTS (Xenial Xerus):	ignored (abandoned)

Package

Source: linux-fsl-imx51 (LP Ubuntu Debian)

Upstream:	released (4.1~rc1)
Ubuntu 12.04 ESM (Precise Pangolin):	DNE
Ubuntu 14.04 ESM (Trusty Tahr):	DNE
Ubuntu 16.04 LTS (Xenial Xerus):	DNE

Package

Source: linux-gke (LP Ubuntu Debian)

Upstream:	released (4.1~rc1)
Ubuntu 12.04 ESM (Precise Pangolin):	DNE
Ubuntu 14.04 ESM (Trusty Tahr):	DNE
Ubuntu 16.04 LTS (Xenial Xerus):	not-affected (4.4.0-1003.3)

Package

Source: linux-goldfish (LP Ubuntu Debian)

Upstream:	released (4.1~rc1)
Ubuntu 12.04 ESM (Precise Pangolin):	DNE
Ubuntu 14.04 ESM (Trusty Tahr):	DNE (trusty was ignored)
Ubuntu 16.04 LTS (Xenial Xerus):	ignored (abandoned)

Package

Source: linux-grouper (LP Ubuntu Debian)

Upstream:	released (4.1~rc1)
Ubuntu 12.04 ESM (Precise Pangolin):	DNE
Ubuntu 14.04 ESM (Trusty Tahr):	DNE (trusty was ignored)
Ubuntu 16.04 LTS (Xenial Xerus):	DNE

Package

Source: linux-hwe (LP Ubuntu Debian)

Upstream:	released (4.1~rc1)
Ubuntu 12.04 ESM (Precise Pangolin):	DNE
Ubuntu 14.04 ESM (Trusty Tahr):	DNE
Ubuntu 16.04 LTS (Xenial Xerus):	not-affected (4.8.0-36.36~16.04.1)

Package

Source: linux-hwe-edge (LP Ubuntu Debian)

Upstream:	released (4.1~rc1)
Ubuntu 12.04 ESM (Precise Pangolin):	DNE
Ubuntu 14.04 ESM (Trusty Tahr):	DNE
Ubuntu 16.04 LTS (Xenial Xerus):	not-affected (4.8.0-36.36~16.04.1)

Product

Source tree: https://github.com/bq/aquaris-E4.5

linux-krillin:

ignored (was needed now end-of-life)

Package

Source: linux-linaro-omap (LP Ubuntu Debian)

Upstream:	released (4.1~rc1)
Ubuntu 12.04 ESM (Precise Pangolin):	DNE (precise was ignored [abandoned])
Ubuntu 14.04 ESM (Trusty Tahr):	DNE
Ubuntu 16.04 LTS (Xenial Xerus):	DNE

Package

Source: linux-linaro-shared (LP Ubuntu Debian)

Upstream:	released (4.1~rc1)
Ubuntu 12.04 ESM (Precise Pangolin):	DNE (precise was ignored [abandoned])
Ubuntu 14.04 ESM (Trusty Tahr):	DNE
Ubuntu 16.04 LTS (Xenial Xerus):	DNE

Package

Source: linux-linaro-vexpress (LP Ubuntu Debian)

Upstream:	released (4.1~rc1)
Ubuntu 12.04 ESM (Precise Pangolin):	DNE (precise was ignored [abandoned])
Ubuntu 14.04 ESM (Trusty Tahr):	DNE
Ubuntu 16.04 LTS (Xenial Xerus):	DNE

Package

Source: linux-lts-quantal (LP Ubuntu Debian)

Upstream:	released (4.1~rc1)
Ubuntu 12.04 ESM (Precise Pangolin):	DNE (precise was ignored [was pending [3.5.0-61.90] OEM release])
Ubuntu 14.04 ESM (Trusty Tahr):	DNE
Ubuntu 16.04 LTS (Xenial Xerus):	DNE

Patches:

This package is not directly supported by the Ubuntu Security Team

Package

Source: linux-lts-raring (LP Ubuntu Debian)

Upstream:	released (4.1~rc1)
Ubuntu 12.04 ESM (Precise Pangolin):	DNE (precise was ignored [was needs-triage now end-of-life])
Ubuntu 14.04 ESM (Trusty Tahr):	DNE
Ubuntu 16.04 LTS (Xenial Xerus):	DNE

Package

Source: linux-lts-saucy (LP Ubuntu Debian)

Upstream:	released (4.1~rc1)
Ubuntu 12.04 ESM (Precise Pangolin):	DNE (precise was ignored [was pending [3.11.0-34.55~precise1] OEM release])
Ubuntu 14.04 ESM (Trusty Tahr):	DNE
Ubuntu 16.04 LTS (Xenial Xerus):	DNE

This package is not directly supported by the Ubuntu Security Team

Package

Source: linux-lts-trusty (LP Ubuntu Debian)

Upstream:	released (4.1~rc1)
Ubuntu 12.04 ESM (Precise Pangolin):	released (3.13.0-52.85~precise1)
Ubuntu 14.04 ESM (Trusty Tahr):	DNE
Ubuntu 16.04 LTS (Xenial Xerus):	DNE

Package

Source: linux-lts-utopic (LP Ubuntu Debian)

Upstream:	released (4.1~rc1)
Ubuntu 12.04 ESM (Precise Pangolin):	DNE
Ubuntu 14.04 ESM (Trusty Tahr):	DNE (trusty was released [3.16.0-37.49~14.04.1])
Ubuntu 16.04 LTS (Xenial Xerus):	DNE

Package

Source: linux-lts-vivid (LP Ubuntu Debian)

Upstream:	released (4.1~rc1)
Ubuntu 12.04 ESM (Precise Pangolin):	DNE
Ubuntu 14.04 ESM (Trusty Tahr):	DNE (trusty was not-affected [3.19.0-18.18~14.04.1])
Ubuntu 16.04 LTS (Xenial Xerus):	DNE

Package

Source: linux-lts-wily (LP Ubuntu Debian)

Upstream:	released (4.1~rc1)
Ubuntu 12.04 ESM (Precise Pangolin):	DNE
Ubuntu 14.04 ESM (Trusty Tahr):	DNE (trusty was not-affected [4.2.0-18.22~14.04.1])
Ubuntu 16.04 LTS (Xenial Xerus):	DNE

Package

Source: linux-lts-xenial (LP Ubuntu Debian)

Upstream:	released (4.1~rc1)
Ubuntu 12.04 ESM (Precise Pangolin):	DNE
Ubuntu 14.04 ESM (Trusty Tahr):	not-affected (4.4.0-13.29~14.04.1)
Ubuntu 16.04 LTS (Xenial Xerus):	DNE

Package

Source: linux-maguro (LP Ubuntu Debian)

Upstream:	released (4.1~rc1)
Ubuntu 12.04 ESM (Precise Pangolin):	DNE
Ubuntu 14.04 ESM (Trusty Tahr):	DNE (trusty was ignored)
Ubuntu 16.04 LTS (Xenial Xerus):	DNE

Package

Source: linux-mako (LP Ubuntu Debian)

Upstream:	released (4.1~rc1)
Ubuntu 12.04 ESM (Precise Pangolin):	DNE
Ubuntu 14.04 ESM (Trusty Tahr):	DNE (trusty was ignored)
Ubuntu 16.04 LTS (Xenial Xerus):	ignored (abandoned)

Package

Source: linux-manta (LP Ubuntu Debian)

Upstream:	released (4.1~rc1)
Ubuntu 12.04 ESM (Precise Pangolin):	DNE
Ubuntu 14.04 ESM (Trusty Tahr):	DNE (trusty was ignored)
Ubuntu 16.04 LTS (Xenial Xerus):	DNE

Package

Source: linux-mvl-dove (LP Ubuntu Debian)

Upstream:	released (4.1~rc1)
Ubuntu 12.04 ESM (Precise Pangolin):	DNE
Ubuntu 14.04 ESM (Trusty Tahr):	DNE
Ubuntu 16.04 LTS (Xenial Xerus):	DNE

Package

Source: linux-qcm-msm (LP Ubuntu Debian)

Upstream:	released (4.1~rc1)
Ubuntu 12.04 ESM (Precise Pangolin):	DNE (precise was ignored [abandoned])
Ubuntu 14.04 ESM (Trusty Tahr):	DNE
Ubuntu 16.04 LTS (Xenial Xerus):	DNE

Package

Source: linux-raspi2 (LP Ubuntu Debian)

Upstream:	released (4.1~rc1)
Ubuntu 12.04 ESM (Precise Pangolin):	DNE
Ubuntu 14.04 ESM (Trusty Tahr):	DNE
Ubuntu 16.04 LTS (Xenial Xerus):	not-affected (4.2.0-1013.19)

Package

Source: linux-snapdragon (LP Ubuntu Debian)

Upstream:	released (4.1~rc1)
Ubuntu 12.04 ESM (Precise Pangolin):	DNE
Ubuntu 14.04 ESM (Trusty Tahr):	DNE
Ubuntu 16.04 LTS (Xenial Xerus):	not-affected (4.4.0-1012.12)

Package

Source: linux-ti-omap4 (LP Ubuntu Debian)

Upstream:	released (4.1~rc1)
Ubuntu 12.04 ESM (Precise Pangolin):	DNE (precise was released [3.2.0-1464.84])
Ubuntu 14.04 ESM (Trusty Tahr):	DNE
Ubuntu 16.04 LTS (Xenial Xerus):	DNE

Product

Source tree: https://github.com/bq/aquaris-E5

linux-vegetahd:

ignored (was needed now end-of-life)

More Information

Updated: 2019-12-05 18:41:07 UTC (commit dd38ff22974aae499eb50644b9d5a2817483cbdb)